Skip to content

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-core from 2.10.2 to 2.12.2#3

Open
snyk-bot wants to merge 1 commit into
mainfrom
snyk-upgrade-72b4e5f9eda7160b7110e805e2cf8f61
Open

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-core from 2.10.2 to 2.12.2#3
snyk-bot wants to merge 1 commit into
mainfrom
snyk-upgrade-72b4e5f9eda7160b7110e805e2cf8f61

Conversation

@snyk-bot

Copy link
Copy Markdown

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-core from 2.10.2 to 2.12.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 14 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2021-03-03.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
XML External Entity (XXE) Injection
SNYK-JAVA-COMFASTERXMLJACKSONCORE-1048302
624/1000
Why? Has a fix available, CVSS 8.2
No Known Exploit

(*) Note that the real score may have changed since the PR was raised.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

1 participant