Dependency Update : SnakeYAML for the dotCMS CLI project #28325
Labels
dotCMS : CLI
LTS : Next
Ticket that will be added to LTS
Merged
OKR : Security & Privacy
Owned by Mehdi
Priority : 2 High
QA : Not Needed
Release : 24.05.13
Bug Fixing
Team : Scout
Triage
Type : Task
Parent Issue
#24850
Task
dotCMS CLI is currently using
org.yaml/snakeyaml 1.30
Upgrading to version 2.2 will remove all the reported security vulnerabilities.
Proposed Objective
Code Maintenance
Proposed Priority
Priority 2 - Important
Acceptance Criteria
No response
External Links... Slack Conversations, Support Tickets, Figma Designs, etc.
No response
Assumptions & Initiation Needs
SnakeYAML 1.30 is being included as a transitive dependency. As per conversation with @fabrizzio-dotCMS , it's very likely that a major change in the dependency list needs to be done.
Quality Assurance Notes & Workarounds
No response
Sub-Tasks & Estimates
No response
The text was updated successfully, but these errors were encountered: