[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17246249#comment-17246249 ]
ASF subversion and git services commented on GEODE-8496: -------------------------------------------------------- Commit 424cd7282e91d4af07a00f663db6affc0610035a in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=424cd72 ] GEODE-8496: dependency updates (#5822) * Bump spring-security from 5.4.1 to 5.4.2 * Bump archunit from 0.12.0 to 0.14.1 * Bump fastutil from 8.4.3 to 8.4.4 * Bump httpcore from 4.4.13 to 4.4.14 * Bump istack-commons from 3.0.11 to 4.0.0 * Bump lettuce from 5.3.5.RELEASE to 6.0.1.RELEASE * Bump dependencyUpdates from 0.28.0 to 0.36.0 * Bump nebula-lint from 16.4.0 to 16.15.9 * Bump dependency-management from 1.0.9.RELEASE to 1.0.10.RELEASE * Bump grgit from 4.0.1 to 4.1.0 * Bump sonarqube from "2.8" to "3.0" * Bump nebula.facet from 6.0.2 to 6.2.0 * Bump spotless from 3.28.0 to 5.8.2 * remove unused dependency jackson-module-scala_2.10 * update bump exclusions and readme > bump dependencies for 1.14 > -------------------------- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build > Reporter: Owen Nichols > Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)