Update libs.versions.toml (#8387)
Fix CVE-2022-25647 The package com.google.code.gson:gson before 2.8.9 is vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to denial of service attacks. Bump up version of the gson package. https://github.com/advisories/GHSA-4jrv-ppp4-jm57
This commit is contained in:
parent
8db59321d9
commit
2146bacd2e
|
@ -6,7 +6,7 @@ plugin-kotlin = "1.6.10"
|
|||
plugin-gver = "0.42.0"
|
||||
kotlinx-benchmark = "0.4.8"
|
||||
junit = "4.12"
|
||||
gson = "2.8.5"
|
||||
gson = "2.8.9"
|
||||
moshi-kotlin = "1.11.0"
|
||||
|
||||
[libraries]
|
||||
|
|
Loading…
Reference in New Issue