You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Based on latest reports from Snyk, it looks like we should unify and upgrade dependencies to Jackson versions.
The main version Stargate components like restapi seems to use is 2.10.5 which is ok (as long as it's beyond 2.9 we won't get tons of CVEs), but based on my work on StargateV2 we should have no problem upgrading to the latest 2.12 patch. And while we could go all the way 2.13.2 (released yesterday) it seems safer to go with something that has been around for a while and has no known vulnerabilities. Hence 2.12.6.
The text was updated successfully, but these errors were encountered:
Based on latest reports from Snyk, it looks like we should unify and upgrade dependencies to Jackson versions.
The main version Stargate components like
restapi
seems to use is 2.10.5 which is ok (as long as it's beyond 2.9 we won't get tons of CVEs), but based on my work on StargateV2 we should have no problem upgrading to the latest 2.12 patch. And while we could go all the way 2.13.2 (released yesterday) it seems safer to go with something that has been around for a while and has no known vulnerabilities. Hence 2.12.6.The text was updated successfully, but these errors were encountered: