Merge pull request #79 from avinash-bharti/fix/APS-18063-jackson-core-dos-vulnerability

karanshah-browserstack · web-flow · commit 301163dfe164 · 2026-04-22T17:33:11.000+05:30
[APS-18063] fix: bump jackson-core/databind to 2.18.6 to fix async parser DoS (GHSA-72hv-8253-57qq)
diff --git a/pom.xml b/pom.xml
@@ -34,7 +34,7 @@
 	</distributionManagement>
 
 	<properties>
-		<jackson.version>2.15.2</jackson.version>
+		<jackson.version>2.18.6</jackson.version>
 		<junit.version>4.13.2</junit.version>
 		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
 		<maven.compiler.source>1.8</maven.compiler.source>
