This is an automated email from the ASF dual-hosted git repository. ningjiang pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/servicecomb-pack.git
commit 69712b2baee6be9f5710a8b8585e6d6b0c7bbc29 Author: Willem Jiang <willem.ji...@gmail.com> AuthorDate: Fri Feb 25 17:57:39 2022 +0800 SCB-2368 Fixed the CVE issue with CVSS 10 --- pom.xml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pom.xml b/pom.xml index f8ca805..6b3b6cd 100644 --- a/pom.xml +++ b/pom.xml @@ -65,7 +65,7 @@ <kryo.version>4.0.1</kryo.version> <javax.transaction.version>1.2</javax.transaction.version> <eclipse.link.version>2.7.1</eclipse.link.version> - <jackson.version>2.9.0</jackson.version> + <jackson.version>2.13.2</jackson.version> <byteman.version>4.0.1</byteman.version> <jaxb.version>2.3.0</jaxb.version> <javax.activation.version>1.1.1</javax.activation.version> @@ -886,7 +886,7 @@ <configuration> <name>notifier-dependency-check</name> <format>HTML</format> - <failBuildOnCVSS>9</failBuildOnCVSS> + <failBuildOnCVSS>10</failBuildOnCVSS> <failOnError>false</failOnError> <skipProvidedScope>true</skipProvidedScope> <skipRuntimeScope>true</skipRuntimeScope>