Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Revert Jackson bump as it looks for absent com.fasterxml.jackson:jackson-bom:2.13.2.1 #260

Closed
nealeu opened this issue Mar 28, 2022 · 3 comments · Fixed by jeremylong/DependencyCheck#4285
Closed

Revert Jackson bump as it looks for absent com.fasterxml.jackson:jackson-bom:2.13.2.1 #260

nealeu opened this issue Mar 28, 2022 · 3 comments · Fixed by jeremylong/DependencyCheck#4285

Comments

@nealeu
Copy link

nealeu commented Mar 28, 2022

We also tried updating jackson-databind for that for our project and got the same issue you got at https://github.com/dependency-check/dependency-check-gradle/runs/5720013701?check_suite_focus=true.

The 7.0.2 release would however be great to have without the Jackson bump, as we do need the fix for #258
@Grimoren
Copy link

I second this. This is going to cause a ton of issues with all my repos.

@Grimoren
Copy link

jeremylong/DependencyCheck#4280

@Grimoren Grimoren mentioned this issue Mar 28, 2022
Closed
This was referenced Mar 29, 2022
Closed
Closed
@chadlwilson
Copy link

It looks like perhaps the issue is that the Gradle metadata published for jackson-databind is incorrect. FasterXML/jackson-databind#3428 (comment) implies this is fixed in 2.13.2.2 so should probably roll forward to that.

Overriding in buildscript classpath does work for me (at least until hitting #263 so won't help anyone else too much).

  dependencies {
    classpath 'org.owasp:dependency-check-gradle:7.0.2'
    classpath 'com.fasterxml.jackson.core:jackson-databind:2.13.2.2'
  }

jeremylong added a commit to jeremylong/DependencyCheck that referenced this issue Mar 29, 2022
@jeremylong
fixes dependency-check/dependency-check-gradle#260 and fixes #4280
b8a5212
@jeremylong jeremylong mentioned this issue Mar 29, 2022
Merged
@chadlwilson chadlwilson mentioned this issue Mar 29, 2022
Closed
@quotidian-ennui quotidian-ennui mentioned this issue Mar 29, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Jackson Update jeremylong/DependencyCheck
3 participants
@nealeu @Grimoren @chadlwilson