-
Notifications
You must be signed in to change notification settings - Fork 635
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump AkkaVersion to 2.5.16 #1562
Comments
While this fix is not released, users of Lagom may override the version of the Akka dependency so their applications use the version |
Jeremy first contacted me to do exactly that ("override the version"), but there are lots of Akka-* modules that gets used in Lagom, so I thought it's best if we fix this by propagating the latest version. |
# Pull Request Checklist * [x] Have you read through the [contributor guidelines](https://github.com/lagom/lagom/tree/master/CONTRIBUTING.md)? * [x] Have you signed the [Lightbend CLA](https://www.lightbend.com/contribute/cla)? * [x] Have you added copyright headers to new files? * [x] Have you updated the documentation? * [x] Have you added tests for any changed functionality? ## Fixes Fixes #1562 ## Purpose What does this PR do? This PR updates the akka version. ## Background Context Why did you take this approach? ## References Are there any relevant issues / PRs / mailing lists discussions?
Lagom Version (1.2.x / 1.3.x / etc)
1.4.x
API (Scala / Java / Neither / Both)
Both
Operating System (Ubuntu 15.10 / MacOS 10.10 / Windows 10)
all
JDK (Oracle 1.8.0_112, OpenJDK 1.8.x, Azul Zing)
all
Library Dependencies
Akka 2.5.15 is a dependency of the latest Lagom 1.4.x (1.4.7). Please bump this to 2.5.16 due to https://nvd.nist.gov/vuln/detail/CVE-2018-16115
The text was updated successfully, but these errors were encountered: