From c1e3e7c335faf194243ce5057e523a62d9339029 Mon Sep 17 00:00:00 2001 From: Anton Mostovoy Date: Fri, 19 Jan 2024 09:44:04 -0600 Subject: [PATCH] update com.fasterxml.jackson libraries to resolve CVE-2023-35116 --- project.clj | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/project.clj b/project.clj index 9a7ebc2..011cf52 100644 --- a/project.clj +++ b/project.clj @@ -5,10 +5,10 @@ :url "http://opensource.org/licenses/MIT" :distribution :repo} :global-vars {*warn-on-reflection* false} - :dependencies [[com.fasterxml.jackson.core/jackson-core "2.15.2"] - [com.fasterxml.jackson.dataformat/jackson-dataformat-smile "2.15.2" + :dependencies [[com.fasterxml.jackson.core/jackson-core "2.16.1"] + [com.fasterxml.jackson.dataformat/jackson-dataformat-smile "2.16.1" :exclusions [com.fasterxml.jackson.core/jackson-databind]] - [com.fasterxml.jackson.dataformat/jackson-dataformat-cbor "2.15.2" + [com.fasterxml.jackson.dataformat/jackson-dataformat-cbor "2.16.1" :exclusions [com.fasterxml.jackson.core/jackson-databind]] [tigris "0.1.2"]] :profiles {:dev {:dependencies [[org.clojure/clojure "1.11.1"]