upgrade commons-io due to CVE-2021-29425, it's a vulnerability in FileNameUtils.normalize that isn't used in this project

2026-03-10 08:21:21 +00:00 · 2021-04-21 11:37:38 +02:00
parent f6e8a2c7c6
commit e629a23bd4
1 changed files with 1 additions and 1 deletions
--- a/pom.xml
+++ b/pom.xml
@@ -429,7 +429,7 @@
    <dependency>
      <groupId>commons-io</groupId>
      <artifactId>commons-io</artifactId>
-      <version>2.4</version>
+      <version>2.8.0</version>
    </dependency>
    <dependency>
      <groupId>com.infradna.tool</groupId>