Vulnerabilities from dependencies

[taohongyao]

Can you fix vulnerabilities from dependencies:
CVE-2022-42004
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42004
CVE-2022-42003
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42003

[dmitry-weirdo]

Also CVE-2022-1471 is now failing on the org.yaml:snakeyaml:jar:1.30:compile dependency. It crashes our builds.