mirror of
https://github.com/arsvendg/Stirling-PDF.git
synced 2026-07-16 19:33:11 +02:00
chore(deps): update dependencies for security (#5813)
This commit is contained in:
+4
-4
@@ -22,14 +22,14 @@ import org.gradle.jvm.toolchain.JavaLanguageVersion
|
||||
ext {
|
||||
springBootVersion = "4.0.3"
|
||||
pdfboxVersion = "3.0.6"
|
||||
imageioVersion = "3.13.0"
|
||||
imageioVersion = "3.13.1"
|
||||
lombokVersion = "1.18.42"
|
||||
bouncycastleVersion = "1.83"
|
||||
springSecuritySamlVersion = "7.0.2"
|
||||
openSamlVersion = "4.3.2"
|
||||
commonmarkVersion = "0.27.1"
|
||||
googleJavaFormatVersion = "1.34.1"
|
||||
logback = "1.5.28"
|
||||
logback = "1.5.32"
|
||||
junitPlatformVersion = "1.12.2"
|
||||
modernJavaVersion = 21
|
||||
}
|
||||
@@ -194,8 +194,8 @@ subprojects {
|
||||
// - CVE-2022-25647: gson 2.8.9+ (explicit dependency overrides tabula 2.8.7)
|
||||
// - CVE-2025-66453: rhino 1.7.15 (explicit dependency overrides verapdf 1.7.13)
|
||||
// Fallback strategy force declarations for additional safety:
|
||||
resolutionStrategy.force 'com.google.code.gson:gson:2.8.9'
|
||||
resolutionStrategy.force 'org.mozilla:rhino:1.7.15'
|
||||
resolutionStrategy.force 'com.google.code.gson:gson:2.13.2'
|
||||
resolutionStrategy.force 'org.mozilla:rhino:1.9.1'
|
||||
// CVE-2025-48924: commons-lang3 3.20.0 DoS prevention
|
||||
resolutionStrategy.force 'org.apache.commons:commons-lang3:3.20.0'
|
||||
// CVE-2024-47554: commons-io 2.21.0 DoS prevention
|
||||
|
||||
Reference in New Issue
Block a user