Package: snakeyaml
Severity: wishlist
Dear maintainer,
Please upgrade snakeyaml to the latest version.
To help prevent remote code execution vulnerabilities, snakeyaml 2.2 and
later disallows global tags by default.
This has prompted a number of projects to migrate to this new release,
Puppet Server and PuppetDB, among others.
Thank you!
-- Jerome
__
This is the maintainer address of Debian's Java team
<https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-java-maintainers>.
Please use
debian-j...@lists.debian.org for discussions and questions.