Re: [PR] [FLINK-36976] Upgrade jackson from 2.15.3 to 2.18.2 [flink]

via GitHub Sun, 05 Jan 2025 09:39:49 -0800


snuyanzin commented on code in PR #25865:
URL: https://github.com/apache/flink/pull/25865#discussion_r1903311567



##########
pom.xml:
##########
@@ -1857,7 +1857,7 @@ under the License.
                                                        <rules>
                                                                
<bannedDependencies>
                                                                        
<excludes>
-                                                                               
<exclude>com.fasterxml.jackson*:*:(,2.12.0]</exclude>
+                                                                               
<exclude>com.fasterxml.jackson*:*:(,2.14.0]</exclude>

Review Comment:
   2.13.2 has CVE so it would make sense to bump exclusions here as well



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscr...@flink.apache.org

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org

Re: [PR] [FLINK-36976] Upgrade jackson from 2.15.3 to 2.18.2 [flink]

Reply via email to