Skip to content

Commit

Permalink
[ESI][Runtime] Bumping JSON library to avoid CVEs
Browse files Browse the repository at this point in the history
v3.11.2 had a requirements.txt file which had some python libs which
have the following security alerts:

CVE-2022-21797, joblib 1.1.0, Critical
CVE-2023-40267, gitpython 3.1.27, Critical
  • Loading branch information
teqdruid committed Mar 14, 2024
1 parent c970974 commit 1080acb
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion lib/Dialect/ESI/runtime/CMakeLists.txt
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,7 @@ find_package(ZLIB REQUIRED)
# JSON parser for the manifest.
FetchContent_Declare(json
GIT_REPOSITORY https://github.com/nlohmann/json.git
GIT_TAG v3.11.2
GIT_TAG v3.11.3
)
FetchContent_MakeAvailable(json)

Expand Down

0 comments on commit 1080acb

Please sign in to comment.