Skip to content

Commit b29e1d4

Browse files
esanchezrosesanchezros
committed
Upgrade spring boot dependencies and fix snakeyaml vulnerability
1 parent 3648b7f commit b29e1d4

File tree

2 files changed

+11
-5
lines changed

2 files changed

+11
-5
lines changed

README.adoc

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
image:https://dl.circleci.com/status-badge/img/gh/esanchezros/quickfixj-spring-boot-starter/tree/main.svg?style=shield["CircleCI", link="https://dl.circleci.com/status-badge/redirect/gh/esanchezros/quickfixj-spring-boot-starter/tree/main"]
22
image:https://codecov.io/gh/esanchezros/quickfixj-spring-boot-starter/branch/main/graph/badge.svg?token=DhK6IBGZMS["codecov",link="https://codecov.io/gh/esanchezros/quickfixj-spring-boot-starter"]
3-
image:https://img.shields.io/badge/maven%20central-v2.15.4-blue.svg["Maven Central",link="https://search.maven.org/#search%7Cga%7C1%7Ca%3A%22quickfixj-spring-boot-starter%22"]
3+
image:https://img.shields.io/badge/maven%20central-v2.16.1-blue.svg["Maven Central",link="https://search.maven.org/#search%7Cga%7C1%7Ca%3A%22quickfixj-spring-boot-starter%22"]
44
image:https://img.shields.io/hexpm/l/plug.svg["Apache 2",link="http://www.apache.org/licenses/LICENSE-2.0"]
55
image:https://img.shields.io/badge/quickfixj-2.3.1-blue.svg["QuickFIX/J 2.3.1", link="https://github.com/quickfix-j/quickfixj"]
66
image:https://app.codacy.com/project/badge/Grade/1c6bf92b53324a45ba587e061dc6547d["Codacy code quality", link="https://www.codacy.com/gh/esanchezros/quickfixj-spring-boot-starter/dashboard?utm_source=github.com&utm_medium=referral&utm_content=esanchezros/quickfixj-spring-boot-starter&utm_campaign=Badge_Grade"]
@@ -19,7 +19,7 @@ To use the QuickFIX/J Server or QuickFIX/J Client you need to add the QuickFIX/J
1919
<dependency>
2020
<groupId>io.allune</groupId>
2121
<artifactId>quickfixj-spring-boot-starter</artifactId>
22-
<version>2.15.4</version>
22+
<version>2.16.1</version>
2323
</dependency>
2424
----
2525

@@ -327,7 +327,7 @@ To enable the actuator endpoints you will also have to add the QuickFIX/J Spring
327327
<dependency>
328328
<groupId>io.allune</groupId>
329329
<artifactId>quickfixj-spring-boot-actuator</artifactId>
330-
<version>2.15.4</version>
330+
<version>2.16.1</version>
331331
</dependency>
332332
----
333333

@@ -724,7 +724,7 @@ To enable the actuator endpoints you will also have to add the QuickFIX/J Spring
724724
<dependency>
725725
<groupId>io.allune</groupId>
726726
<artifactId>quickfixj-spring-boot-actuator</artifactId>
727-
<version>2.15.4</version>
727+
<version>2.16.1</version>
728728
</dependency>
729729
----
730730

pom.xml

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -75,11 +75,17 @@
7575
<!-- Import dependency management from Spring Boot -->
7676
<groupId>org.springframework.boot</groupId>
7777
<artifactId>spring-boot-dependencies</artifactId>
78-
<version>2.7.12</version>
78+
<version>2.7.15</version>
7979
<type>pom</type>
8080
<scope>import</scope>
8181
</dependency>
8282

83+
<dependency>
84+
<groupId>org.yaml</groupId>
85+
<artifactId>snakeyaml</artifactId>
86+
<version>2.1</version>
87+
</dependency>
88+
8389
<dependency>
8490
<groupId>io.allune</groupId>
8591
<artifactId>quickfixj-spring-boot-dependencies</artifactId>

0 commit comments

Comments
 (0)