[jira] [Commented] (SLING-10974) testing clients - replace org.codehaus.jackson with com.fasterxml.jackson.core

Andrei Dulvac (Jira) Thu, 09 Dec 2021 01:32:31 -0800


    [ 
https://issues.apache.org/jira/browse/SLING-10974?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17456265#comment-17456265
 ]


Andrei Dulvac commented on SLING-10974:
---------------------------------------

[~kwin], hence the major version bump. These jackson packages have a long 
history of security vulnerabilities. Plus, we've been putting this change out 
long enough. See 
https://github.com/apache/sling-org-apache-sling-testing-clients/commit/2988bbe2456c2cfd6beb62cdb94faa984ac4b8c8#diff-9c5fb3d1b7e3b0f54bc5c4182965c4fe1f9023d449017cece3005d3f90e8e4d8R186-R192
 

> testing clients - replace org.codehaus.jackson with com.fasterxml.jackson.core
> ------------------------------------------------------------------------------
>
>                 Key: SLING-10974
>                 URL: https://issues.apache.org/jira/browse/SLING-10974
>             Project: Sling
>          Issue Type: Improvement
>          Components: Apache Sling Testing Clients
>    Affects Versions: Apache Sling Testing Clients 2.0.12
>            Reporter: Andrei Dulvac
>            Assignee: Andrei Dulvac
>            Priority: Major
>             Fix For: Apache Sling Testing Clients 3.0.0
>
>
> Replace {{org.codehaus.jackson}} with the latest 
> {{com.fasterxml.jackson.core}} in the sling testing clients.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Commented] (SLING-10974) testing clients - replace org.codehaus.jackson with com.fasterxml.jackson.core

Reply via email to