[ https://issues.apache.org/jira/browse/ATLAS-3452?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16961460#comment-16961460 ]
Sarath Subramanian commented on ATLAS-3452: ------------------------------------------- Thanks for the patch [~django]. +1 > Update jackson.databind.version to 2.10.0 and Guava Version to 28.0-jre > ----------------------------------------------------------------------- > > Key: ATLAS-3452 > URL: https://issues.apache.org/jira/browse/ATLAS-3452 > Project: Atlas > Issue Type: Bug > Components: atlas-core > Affects Versions: 2.0.0 > Reporter: Kalman > Assignee: Aadarsh Jajodia > Priority: Major > Fix For: trunk, 2.1.0 > > Attachments: > 0001-ATLAS-3452-Updating-jackson.databind.version-to-2.10 and Guava Version > to 28.0-jre.patch > > > Atlas uses jackson-databind 2.9.9.1, but there is a patch release, 2.10.0 to > address a CVE vulnerability, to make static code analysis tool happy, we need > to upgrade it. -- This message was sent by Atlassian Jira (v8.3.4#803005)