Skip to content

Commit

Permalink
util: upgrade snakeyaml due to cve
Browse files Browse the repository at this point in the history 
Signed-off-by: Kyle Bahr <kbahr@twitter.com>

Problem/Solution:

upgrade snakeyaml version to 1.28

Result
Closes twitter/util#301

JIRA Issues: CSL-12126

Differential Revision: https://phabricator.twitter.biz/D930268
  • Loading branch information
@DinoCassowary
DinoCassowary authored and jenkins committed Jul 20, 2022
1 parent 57d0ad4 commit 12cebf4
Showing 1 changed file with 0 additions and 2 deletions.
2 changes: 0 additions & 2 deletions build.sbt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -106,7 +106,6 @@ lazy val versions = new {
val scalaTestPlusScalaCheck = "3.1.2.0"
val servletApi = "2.5"
val slf4j = "1.7.30"
val snakeyaml = "1.24"
val javaxBind = "2.3.0"
val javaxActivation = "1.1.1"
}
Expand Down Expand Up @@ -1019,7 +1018,6 @@ lazy val thrift = project
"com.twitter" %% "util-slf4j-api" % versions.twLibVersion,
"javax.inject" % "javax.inject" % "1",
"com.novocode" % "junit-interface" % "0.11" % Test,
"org.yaml" % "snakeyaml" % versions.snakeyaml,
"org.slf4j" % "slf4j-simple" % versions.slf4j % "test-internal"
),
Test / scroogePublishThrift := true,
Expand Down

0 comments on commit 12cebf4

Please sign in to comment.