Skip to content

Commit

Permalink
Bump transitive dependencies that have reported vulnerabilities
Browse files Browse the repository at this point in the history
  • Loading branch information
@chadlwilson
chadlwilson committed May 17, 2024
1 parent b5061e2 commit 4b8ec12
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions build.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -80,6 +80,13 @@ dependencies {
implementation('com.nimbusds:oauth2-oidc-sdk:9.43.4') {
because 'Azure SDK 1.x uses an older version with vulnerable dependencies'
}
// Force upgrade transitive dependencies of fabric client to versions without vulnerabilities
implementation('com.squareup.retrofit2:retrofit:2.11.0') {
because 'Azure SDK 1.x uses an older version with vulnerable dependencies'
}
implementation('com.squareup.okio:okio:1.17.6') {
because 'Retrofit via Azure SDK uses an older version with vulnerable dependencies'
}
}
implementation group: 'org.freemarker', name: 'freemarker', version: '2.3.32'

Expand Down

0 comments on commit 4b8ec12

Please sign in to comment.