From eaf2a6432aa3027727ec290cc3e00e2d0f1b215d Mon Sep 17 00:00:00 2001 From: daz Date: Thu, 4 Apr 2024 09:12:31 -0600 Subject: [PATCH] Update dependency with vulnerability Bump the version of `org.apache.commons:commons-text` to `1.10.0`. This resolves a Dependabot alert caused by a CVE in version `1.9`. --- gradle/libs.versions.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml index deb307d..07cc02a 100644 --- a/gradle/libs.versions.toml +++ b/gradle/libs.versions.toml @@ -2,7 +2,7 @@ # https://docs.gradle.org/current/userguide/platforms.html#sub::toml-dependencies-format [libraries] -commons-text = { module = "org.apache.commons:commons-text", version = "1.9" } +commons-text = { module = "org.apache.commons:commons-text", version = "1.10.0" } minio = { module = "io.minio:minio", version = "8.5.8" } junit-jupiter = { module = "org.junit.jupiter:junit-jupiter", version = "5.10.2" }