From 5a0faa36bcce95a0bc73936d77945a0b5baaa1c7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 Jul 2026 02:06:26 +0000 Subject: [PATCH] Bump com.fasterxml.jackson.core:jackson-databind from 2.21.4 to 2.22.0 Bumps [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) from 2.21.4 to 2.22.0. - [Commits](https://github.com/FasterXML/jackson/commits) --- updated-dependencies: - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-version: 2.22.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- build.gradle.kts | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle.kts b/build.gradle.kts index e255ca2..6a7dede 100644 --- a/build.gradle.kts +++ b/build.gradle.kts @@ -34,7 +34,7 @@ dependencies { // Override Spring Boot 4.1.0's managed jackson-databind 2.21.3 to patch // CVE-2026-54512/-54513 (PolymorphicTypeValidator bypasses, fixed in 2.21.4). - implementation("com.fasterxml.jackson.core:jackson-databind:2.21.4") + implementation("com.fasterxml.jackson.core:jackson-databind:2.22.0") } testImplementation(platform("org.junit:junit-bom:6.1.1"))