Update libs.versions.toml (#8387)

Fix CVE-2022-25647

The package com.google.code.gson:gson before 2.8.9 is vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to denial of service attacks.

Bump up version of the gson package.

https://github.com/advisories/GHSA-4jrv-ppp4-jm57
This commit is contained in:
Mikhail 2024-09-06 02:26:51 +01:00 committed by GitHub
parent 8db59321d9
commit 2146bacd2e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions

View File

@ -6,7 +6,7 @@ plugin-kotlin = "1.6.10"
plugin-gver = "0.42.0"
kotlinx-benchmark = "0.4.8"
junit = "4.12"
gson = "2.8.5"
gson = "2.8.9"
moshi-kotlin = "1.11.0"
[libraries]