gitlab4j-api icon indicating copy to clipboard operation
gitlab4j-api copied to clipboard
verified publisher icon gitlab4j

Jackson dependency has a CVE

Open JasonBarile opened this issue 3 years ago • 0 comments

The project currently depends on Jackson 2.10.3 which has a known CVE: https://nvd.nist.gov/vuln/detail/CVE-2020-36518. Should update to jackson-databind 2.12.6.1 or later.

JasonBarile avatar Jun 02 '22 14:06 JasonBarile