From d5f8064dff99dbdb8d68caf836f7752d69985e75 Mon Sep 17 00:00:00 2001 From: Rupal Mahajan Date: Fri, 19 Apr 2024 17:38:19 -0700 Subject: [PATCH] Upgrade JSON to 20231013 to fix CVE-2023-5072 (#986) Signed-off-by: Rupal Mahajan --- build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index 24338925..3abf8e02 100644 --- a/build.gradle +++ b/build.gradle @@ -131,7 +131,7 @@ dependencies { compile "${group}:common-utils:${common_utils_version}" compileOnly "${group}:opensearch-job-scheduler-spi:${job_scheduler_version}" compile group: 'com.google.guava', name: 'guava', version: '32.0.1-jre' - compile "org.json:json:20230227" + compile "org.json:json:20231013" compile group: 'com.github.wnameless', name: 'json-flattener', version: '0.1.0' implementation 'org.jsoup:jsoup:1.15.3'