From 1e29f532c1dcc9973c60e4d9711649e33066002a Mon Sep 17 00:00:00 2001
From: Matt Brown <mattbrown@spotify.com>
Date: Tue, 15 Oct 2019 11:26:04 -0400
Subject: [PATCH] bump commons-compress to 1.19 for CVE-2019-12402

I noticed an automated Github security warning for
https://nvd.nist.gov/vuln/detail/CVE-2019-12402
---
 plugin/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/plugin/pom.xml b/plugin/pom.xml
index bb8a47e8..0e235368 100644
--- a/plugin/pom.xml
+++ b/plugin/pom.xml
@@ -28,7 +28,7 @@
       <dependency>
         <groupId>org.apache.commons</groupId>
         <artifactId>commons-compress</artifactId>
-        <version>1.18</version>
+        <version>1.19</version>
       </dependency>
       <dependency>
         <groupId>org.codehaus.plexus</groupId>