Security: Bump jackson-databind to 2.13.2.2 (#566)

Evan Sims · web-flow · commit dd22f32d5cfc · 2022-03-30T10:35:54.000+02:00
* Security: Bump `jackson-databind` to 2.13.2.1 This PR bumps the `jackson-databind` dependency to 2.13.2.1 to address [CVE-2020-36518](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36518) in that library * Bump to 2.13.2.2
diff --git a/lib/build.gradle b/lib/build.gradle
@@ -47,7 +47,7 @@ javadoc {
 }
 
 dependencies {
-    implementation 'com.fasterxml.jackson.core:jackson-databind:2.13.2'
+    implementation 'com.fasterxml.jackson.core:jackson-databind:2.13.2.2'
     testImplementation 'org.bouncycastle:bcprov-jdk15on:1.60'
     testImplementation 'junit:junit:4.12'
     testImplementation 'net.jodah:concurrentunit:0.4.3'

Original file line number	Diff line number	Diff line change
`@@ -47,7 +47,7 @@ javadoc {`
`47`	`47`	`}`
`48`	`48`
`49`	`49`	`dependencies {`
`50`		`- implementation 'com.fasterxml.jackson.core:jackson-databind:2.13.2'`
	`50`	`+ implementation 'com.fasterxml.jackson.core:jackson-databind:2.13.2.2'`
`51`	`51`	`testImplementation 'org.bouncycastle:bcprov-jdk15on:1.60'`
`52`	`52`	`testImplementation 'junit:junit:4.12'`
`53`	`53`	`testImplementation 'net.jodah:concurrentunit:0.4.3'`