Bump AkkaVersion to 2.5.16 #1562
Milestone
Comments
|
While this fix is not released, users of Lagom may override the version of the Akka dependency so their applications use the version |
Jeremy first contacted me to do exactly that ("override the version"), but there are lots of Akka-* modules that gets used in Lagom, so I thought it's best if we fix this by propagating the latest version. |
ignasi35
pushed a commit
that referenced
this issue
Aug 31, 2018
# Pull Request Checklist * [x] Have you read through the [contributor guidelines](https://github.com/lagom/lagom/tree/master/CONTRIBUTING.md)? * [x] Have you signed the [Lightbend CLA](https://www.lightbend.com/contribute/cla)? * [x] Have you added copyright headers to new files? * [x] Have you updated the documentation? * [x] Have you added tests for any changed functionality? ## Fixes Fixes #1562 ## Purpose What does this PR do? This PR updates the akka version. ## Background Context Why did you take this approach? ## References Are there any relevant issues / PRs / mailing lists discussions?
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Lagom Version (1.2.x / 1.3.x / etc)
1.4.x
API (Scala / Java / Neither / Both)
Both
Operating System (Ubuntu 15.10 / MacOS 10.10 / Windows 10)
all
JDK (Oracle 1.8.0_112, OpenJDK 1.8.x, Azul Zing)
all
Library Dependencies
Akka 2.5.15 is a dependency of the latest Lagom 1.4.x (1.4.7). Please bump this to 2.5.16 due to https://nvd.nist.gov/vuln/detail/CVE-2018-16115
The text was updated successfully, but these errors were encountered: