This is an automated email from the ASF dual-hosted git repository.
yhu pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/beam.git
The following commit(s) were added to refs/heads/master by this push:
new e2a7ea66fa2 [Security] Bump org.json version due to CVE-2023-5072
(#29207)
e2a7ea66fa2 is described below
commit e2a7ea66fa23497efe570e7d78758523c68c5339
Author: Bruno Volpato <bvolp...@google.com>
AuthorDate: Tue Oct 31 12:52:27 2023 -0400
[Security] Bump org.json version due to CVE-2023-5072 (#29207)
---
buildSrc/src/main/groovy/org/apache/beam/gradle/BeamModulePlugin.groovy | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
a/buildSrc/src/main/groovy/org/apache/beam/gradle/BeamModulePlugin.groovy
b/buildSrc/src/main/groovy/org/apache/beam/gradle/BeamModulePlugin.groovy
index 5943c0c77d8..2d2ac32d815 100644
--- a/buildSrc/src/main/groovy/org/apache/beam/gradle/BeamModulePlugin.groovy
+++ b/buildSrc/src/main/groovy/org/apache/beam/gradle/BeamModulePlugin.groovy
@@ -824,7 +824,7 @@ class BeamModulePlugin implements Plugin<Project> {
joda_time :
"joda-time:joda-time:2.10.10",
jsonassert :
"org.skyscreamer:jsonassert:1.5.0",
jsr305 :
"com.google.code.findbugs:jsr305:$jsr305_version",
- json_org :
"org.json:json:20230618", // Keep in sync with everit-json-schema /
google_cloud_platform_libraries_bom transitive deps.
+ json_org :
"org.json:json:20231013", // Keep in sync with everit-json-schema /
google_cloud_platform_libraries_bom transitive deps.
everit_json_schema :
"com.github.erosb:everit-json-schema:${everit_json_version}",
junit : "junit:junit:4.13.1",
jupiter_api :
"org.junit.jupiter:junit-jupiter-api:$jupiter_version",
