Skip to content

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-annotations from 2.10.2 to 2.12.3#4

Open
snyk-bot wants to merge 1 commit into
mainfrom
snyk-upgrade-bd12c7650ae087b506d9476d8a41dea1
Open

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-annotations from 2.10.2 to 2.12.3#4
snyk-bot wants to merge 1 commit into
mainfrom
snyk-upgrade-bd12c7650ae087b506d9476d8a41dea1

Conversation

@snyk-bot

@snyk-bot snyk-bot commented May 5, 2021

Copy link
Copy Markdown

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-annotations from 2.10.2 to 2.12.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 15 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2021-04-12.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
XML External Entity (XXE) Injection
SNYK-JAVA-COMFASTERXMLJACKSONCORE-1048302
624/1000
Why? Has a fix available, CVSS 8.2
No Known Exploit

(*) Note that the real score may have changed since the PR was raised.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

….2 to 2.12.3

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-annotations from 2.10.2 to 2.12.3.

See this package in Maven Repository:
https://mvnrepository.com/artifact/com.fasterxml.jackson.core/jackson-annotations/

See this project in Snyk:
https://app.snyk.io/org/82ndairbornediv/project/01d28f35-e65a-4a62-9d7f-522af61f2500?utm_source=github&utm_medium=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

1 participant