We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
We need to upgrade SnakeYAML to no longer have Gradle exposed to CVE-2022-1471
Note that the risk of abuse in Gradle is only possible through:
module.swiftdeps
If you do not use Swift, you are not impacted.
However given the CVE score, Gradle will be updated to a safe version of SnakeYAML.
The text was updated successfully, but these errors were encountered:
Merge pull request #25011 Update snakeyaml to 2.0
8f5bda1
* Resolves CVE-2022-1471 Fixes #25010 Co-authored-by: Louis Jacomet <louis@gradle.com>
2b1b74e
ljacomet
No branches or pull requests
We need to upgrade SnakeYAML to no longer have Gradle exposed to CVE-2022-1471
Note that the risk of abuse in Gradle is only possible through:
module.swiftdeps
If you do not use Swift, you are not impacted.
However given the CVE score, Gradle will be updated to a safe version of SnakeYAML.
The text was updated successfully, but these errors were encountered: