Skip to content

Commit

Permalink
Update dependencies to mitigate known vulnerabilities (#707)
Browse files Browse the repository at this point in the history 
BitcoinJ: 0.16.1 -> 0.16.3
Dropwizard: 2.1.7 -> 2.1.12
Protobuf: 3.21.7 -> 3.25.5
Bouncycastle: 1.76 -> 1.78

All vulnerabilities were detected using IntelliJ's vulnerability scanner.

This gets rid of all the high-severity and a few of the medium-severity vulnerabilities without breaking compatibility.
  • Loading branch information
@ivmaykov
ivmaykov authored Nov 13, 2024
1 parent 937ecae commit e0fbcf5
Show file tree
Hide file tree
Showing 2 changed files with 623 additions and 4 deletions.
8 changes: 4 additions & 4 deletions java/buildSrc/src/main/kotlin/DependencyVersions.kt
View file
Original file line number Diff line number Diff line change
@@ -1,13 +1,13 @@
package subzero

object DependencyVersions {
val bitcoinj = "0.16.1"
val dropwizard = "2.1.7"
val bitcoinj = "0.16.3"
val dropwizard = "2.1.12"
val findbugs = "3.0.2"
val guava = "32.0.1-jre"
val junit = "4.13.2"
val protobuf = "3.21.7"
val protobuf = "3.25.5"
val snakeyaml = "2.0"
val bouncycastle = "1.76"
val bouncycastle = "1.78"
val zxing = "3.5.0"
}
Loading

0 comments on commit e0fbcf5

Please sign in to comment.