Wow. It would be great if the Jackson dep could move up to 2.x. We'd even be willing to provide a PR for it.
On Fri, Mar 13, 2015 at 12:22 PM, Joe Fasano <joe_fas...@symantec.com> wrote: > Hello All, > > I have been told by my team that some of the cassandra dependencies have > some vulnerabilities and > should be upgraded. Specifically, > Joda Time 1.6 should be upgraded to 2.7 > Jackson 1.9.2 should be upgraded to 1.9.13 > > Is there any schedule or process of getting Cassandra updates to include > updated dependencies? > > > Thanks, > joe > > > Joe Fasano > Sr. Development Manager > Symantec Corporation > > >