merciqiao-manage-system issues

Bump spring-web from 5.0.5.RELEASE to 6.0.0 in /carloan-common/carloan-common-utils

Bumps [spring-web](https://github.com/spring-projects/spring-framework) from 5.0.5.RELEASE to 6.0.0. Release notes Sourced from spring-web's releases. v6.0.0 See What's New in Spring Framework 6.x and Upgrading to Spring Framework 6.x for upgrade instructions and...

dependabot[bot]

dependencies

Bump jackson-databind from 2.9.4 to 2.12.7.1

Bumps [jackson-databind](https://github.com/FasterXML/jackson) from 2.9.4 to 2.12.7.1. Commits See full diff in compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.fasterxml.jackson.core:jackson-databind&package-manager=maven&previous-version=2.9.4&new-version=2.12.7.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

dependencies

Bump jackson-databind from 2.9.4 to 2.12.7.1 in /carloan-common/carloan-common-web

Bumps [jackson-databind](https://github.com/FasterXML/jackson) from 2.9.4 to 2.12.7.1. Commits See full diff in compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.fasterxml.jackson.core:jackson-databind&package-manager=maven&previous-version=2.9.4&new-version=2.12.7.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

dependencies

Bump shiro-core from 1.4.0 to 1.10.0 in /carloan-common/carloan-common-web

Bumps [shiro-core](https://github.com/apache/shiro) from 1.4.0 to 1.10.0. Changelog Sourced from shiro-core's changelog. Licensed to the Apache Software Foundation (ASF) under one or more contributor license agreements. See the NOTICE file distributed...

dependabot[bot]

dependencies

Bump mysql-connector-java from 8.0.11 to 8.0.28 in /carloan-service

Bumps [mysql-connector-java](https://github.com/mysql/mysql-connector-j) from 8.0.11 to 8.0.28. Changelog Sourced from mysql-connector-java's changelog. Changelog https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/ Version 8.0.29 Fix for Bug#21978230, COMMENT PARSING NOT PROPER IN PREPSTMT.EXECUTEBATCH(). Fix for Bug#81468 (23312764), MySQL server...

dependabot[bot]

dependencies

Bump fastjson from 1.2.45 to 1.2.83

Bumps [fastjson](https://github.com/alibaba/fastjson) from 1.2.45 to 1.2.83. Release notes Sourced from fastjson's releases. FASTJSON 1.2.83版本发布（安全修复）这是一个安全修复版本，修复最近收到在特定场景下可以绕过autoType关闭限制的漏洞，建议fastjson用户尽快采取安全措施保障系统安全。安全修复方案：https://github.com/alibaba/fastjson/wiki/security_update_20220523 Issues 安全加固修复JDK17下setAccessible报错的问题 #4077 下载 https://repo1.maven.org/maven2/com/alibaba/fastjson/1.2.83/ 文档 https://github.com/alibaba/fastjson/wiki/%E5%B8%B8%E8%A7%81%E9%97%AE%E9%A2%98 源码 https://github.com/alibaba/fastjson/tree/1.2.83 fastjson 1.2.79版本发布，BUG修复这又是一个bug...

dependabot[bot]

dependencies

Bump fastjson from 1.2.11 to 1.2.83 in /carloan-service/carloan-service-admin

Bumps [fastjson](https://github.com/alibaba/fastjson) from 1.2.11 to 1.2.83. Release notes Sourced from fastjson's releases. FASTJSON 1.2.83版本发布（安全修复）这是一个安全修复版本，修复最近收到在特定场景下可以绕过autoType关闭限制的漏洞，建议fastjson用户尽快采取安全措施保障系统安全。安全修复方案：https://github.com/alibaba/fastjson/wiki/security_update_20220523 Issues 安全加固修复JDK17下setAccessible报错的问题 #4077 下载 https://repo1.maven.org/maven2/com/alibaba/fastjson/1.2.83/ 文档 https://github.com/alibaba/fastjson/wiki/%E5%B8%B8%E8%A7%81%E9%97%AE%E9%A2%98 源码 https://github.com/alibaba/fastjson/tree/1.2.83 fastjson 1.2.79版本发布，BUG修复这又是一个bug...

dependabot[bot]

dependencies

Bump shiro-spring from 1.4.0 to 1.7.1 in /carloan-common/carloan-common-shiro

Bumps shiro-spring from 1.4.0 to 1.7.1. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.shiro:shiro-spring&package-manager=maven&previous-version=1.4.0&new-version=1.7.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...

dependabot[bot]

dependencies

merciqiao-manage-system
merciqiao-manage-system copied to clipboard

Metadata

Bump spring-web from 5.0.5.RELEASE to 6.0.0 in /carloan-common/carloan-common-utils

Bump jackson-databind from 2.9.4 to 2.12.7.1

Bump jackson-databind from 2.9.4 to 2.12.7.1 in /carloan-common/carloan-common-web

Bump shiro-core from 1.4.0 to 1.10.0 in /carloan-common/carloan-common-web

Bump mysql-connector-java from 8.0.11 to 8.0.28 in /carloan-service

Bump fastjson from 1.2.45 to 1.2.83

Bump fastjson from 1.2.11 to 1.2.83 in /carloan-service/carloan-service-admin

Bump shiro-spring from 1.4.0 to 1.7.1 in /carloan-common/carloan-common-shiro

← Metadata

Owner

Metadata

merciqiao-manage-system merciqiao-manage-system copied to clipboard

Metadata

← Metadata

Owner

Metadata

merciqiao-manage-system
merciqiao-manage-system copied to clipboard