chore(deps): bump xmlsec from 3.0.0 to 3.0.1 (#267)

* chore(deps): bump xmlsec from 3.0.0 to 3.0.1 Bumps xmlsec from 3.0.0 to 3.0.1. --- updated-dependencies: - dependency-name: org.apache.santuario:xmlsec dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * fix: remove com.fasterxml.woodstox forced version Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ivan Fernandez Calvo <kuisathaverat@yahoo.com> Co-authored-by: Ivan Fernandez Calvo <kuisathaverat@users.noreply.github.com>
jenkinsci · Oct 23, 2022 · 4f342c3 · 4f342c3
1 parent c8ea9f9
commit 4f342c3
Showing 1 changed file with 1 addition and 2 deletions.
diff --git a/pom.xml b/pom.xml
@@ -278,11 +278,10 @@ under the License.
         <groupId>org.cryptacular</groupId>
         <artifactId>cryptacular</artifactId>
       </dependency>
-      <!-- TODO: remove when CVE-2019-12400 is resolved -->
       <dependency>
         <groupId>org.apache.santuario</groupId>
         <artifactId>xmlsec</artifactId>
-        <version>3.0.0</version>
+        <version>3.0.1</version>
       </dependency>
     </dependencies>
   </dependencyManagement>