loafle/openapi-generator
3
0
Fork 0
forked from loafle/openapi-generator-original
Code Pull Requests Activity

Fix Jackson databind security issue (#4370)

Browse Source 
* fix jackson databind security issue

* update groovy sample

* fix groovy dep version
This commit is contained in:
William Cheng
2019-11-06 10:27:08 +08:00
committed by GitHub
parent 16ad66759b
commit c4f0b09459
47 changed files with 49 additions and 47 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
samples/client/petstore/java/resteasy/build.gradle
View File

@@ -96,7 +96,7 @@ if(hasProperty('target') && target == 'android') {
ext {
swagger_annotations_version = "1.5.22"
jackson_version = "2.9.10"
jackson_databind_version = "2.9.10"
jackson_databind_version = "2.9.10.1"
jackson_databind_nullable_version = "0.2.0"
threetenbp_version = "2.9.10"
resteasy_version = "3.1.3.Final"

2
samples/client/petstore/java/resteasy/build.sbt
View File

@@ -15,7 +15,7 @@ lazy val root = (project in file(".")).
"org.jboss.resteasy" % "resteasy-jackson2-provider" % "3.1.3.Final" % "compile",
"com.fasterxml.jackson.core" % "jackson-core" % "2.9.10" % "compile",
"com.fasterxml.jackson.core" % "jackson-annotations" % "2.9.10" % "compile",
"com.fasterxml.jackson.core" % "jackson-databind" % "2.9.10" % "compile",
"com.fasterxml.jackson.core" % "jackson-databind" % "2.9.10.1" % "compile",
"com.github.joschi.jackson" % "jackson-datatype-threetenbp" % "2.9.10" % "compile",
"com.fasterxml.jackson.datatype" % "jackson-datatype-joda" % "2.9.10" % "compile",
"joda-time" % "joda-time" % "2.9.9" % "compile",

2
samples/client/petstore/java/resteasy/pom.xml
View File

@@ -244,7 +244,7 @@
<swagger-annotations-version>1.5.22</swagger-annotations-version>
<resteasy-version>3.1.3.Final</resteasy-version>
<jackson-version>2.9.10</jackson-version>
<jackson-databind-version>2.9.10</jackson-databind-version>
<jackson-databind-version>2.9.10.1</jackson-databind-version>
<jackson-databind-nullable-version>0.2.0</jackson-databind-nullable-version>
<threetenbp-version>2.9.10</threetenbp-version>
<jodatime-version>2.9.9</jodatime-version>