[
https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17246249#comment-17246249
]
ASF subversion and git services commented on GEODE-8496:
--------------------------------------------------------
Commit 424cd7282e91d4af07a00f663db6affc0610035a in geode's branch
refs/heads/develop from Owen Nichols
[ https://gitbox.apache.org/repos/asf?p=geode.git;h=424cd72 ]
GEODE-8496: dependency updates (#5822)
* Bump spring-security from 5.4.1 to 5.4.2
* Bump archunit from 0.12.0 to 0.14.1
* Bump fastutil from 8.4.3 to 8.4.4
* Bump httpcore from 4.4.13 to 4.4.14
* Bump istack-commons from 3.0.11 to 4.0.0
* Bump lettuce from 5.3.5.RELEASE to 6.0.1.RELEASE
* Bump dependencyUpdates from 0.28.0 to 0.36.0
* Bump nebula-lint from 16.4.0 to 16.15.9
* Bump dependency-management from 1.0.9.RELEASE to 1.0.10.RELEASE
* Bump grgit from 4.0.1 to 4.1.0
* Bump sonarqube from "2.8" to "3.0"
* Bump nebula.facet from 6.0.2 to 6.2.0
* Bump spotless from 3.28.0 to 5.8.2
* remove unused dependency jackson-module-scala_2.10
* update bump exclusions and readme
> bump dependencies for 1.14
> --------------------------
>
> Key: GEODE-8496
> URL: https://issues.apache.org/jira/browse/GEODE-8496
> Project: Geode
> Issue Type: Improvement
> Components: build
> Reporter: Owen Nichols
> Priority: Major
> Labels: pull-request-available
> Fix For: 1.14.0
>
>
> now is a good time in the lull between 1.13 and 1.14 to roll 3rd party
> libraries to latest versions wherever possible. Doing this proactively helps
> us stay ahead of CVEs and keep up with bugfixes.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
