This is an automated email from the ASF dual-hosted git repository.
mawiesne pushed a commit to branch opennlp-1.x
in repository https://gitbox.apache.org/repos/asf/opennlp.git
The following commit(s) were added to refs/heads/opennlp-1.x by this push:
new e7e485c1d updates test scope deps: - junit:4.13 → CVE-2020-15250
(TemporaryFolder info disclosure), fixed in 4.13.1. - commons-io:2.6 →
CVE-2021-29425 (path traversal), fixed in 2.7.
e7e485c1d is described below
commit e7e485c1dd89982d45b2b2923d49ee6588adce36
Author: Martin Wiesner <[email protected]>
AuthorDate: Fri Jun 12 15:26:13 2026 +0200
updates test scope deps:
- junit:4.13 → CVE-2020-15250 (TemporaryFolder info disclosure), fixed in
4.13.1.
- commons-io:2.6 → CVE-2021-29425 (path traversal), fixed in 2.7.
---
pom.xml | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/pom.xml b/pom.xml
index 90699cead..80bb44923 100644
--- a/pom.xml
+++ b/pom.xml
@@ -139,10 +139,10 @@
<java.version>1.8</java.version>
<maven.compiler.target>1.8</maven.compiler.target>
<maven.version>3.3.9</maven.version>
- <commons.io.version>2.6</commons.io.version>
+ <commons.io.version>2.7</commons.io.version>
<enforcer.plugin.version>3.0.0-M2</enforcer.plugin.version>
<glassfish.version>2.30.1</glassfish.version>
- <junit.version>4.13</junit.version>
+ <junit.version>4.13.1</junit.version>
<morfologik.version>2.1.7</morfologik.version>
<osgi.version>4.2.0</osgi.version>
<checkstyle.plugin.version>2.17</checkstyle.plugin.version>
