Update jackson-databind
Closed this issue · 1 comments
aki-kesulahti commented
Current version has Vulnerabilities:
https://mvnrepository.com/artifact/com.snowplowanalytics/snowplow-java-tracker/1.0.0
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42003
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42004
Update jackson-databind to latest version
https://mvnrepository.com/artifact/com.fasterxml.jackson.core/jackson-databind
matus-tomlein commented
We have upgraded to version 2.16.1 in release v2 of the tracker.