From 0d188d6a3932fdd47e69790b72c0531a63a11c5c Mon Sep 17 00:00:00 2001
From: 疯狂的狮子li <15040126243@163.com>
Date: 星期一, 26 九月 2022 17:09:41 +0800
Subject: [PATCH] fix 修复 snakeyaml 漏洞 强制升级依赖版本(临时处理等boot升级)
---
pom.xml | 9 +++++++++
1 files changed, 9 insertions(+), 0 deletions(-)
diff --git a/pom.xml b/pom.xml
index b6998fe..1a6c5a6 100644
--- a/pom.xml
+++ b/pom.xml
@@ -40,6 +40,8 @@
<!-- 缁熶竴 guava 鐗堟湰 瑙e喅闅愬紡婕忔礊闂 -->
<guava.version>31.1-jre</guava.version>
+ <!-- 涓存椂淇 snakeyaml 婕忔礊 -->
+ <snakeyaml.version>1.31</snakeyaml.version>
<!-- OSS 閰嶇疆 -->
<aws-java-sdk-s3.version>1.12.300</aws-java-sdk-s3.version>
@@ -254,6 +256,13 @@
<version>${guava.version}</version>
</dependency>
+ <!-- 涓存椂淇 snakeyaml 婕忔礊 -->
+ <dependency>
+ <groupId>org.yaml</groupId>
+ <artifactId>snakeyaml</artifactId>
+ <version>${snakeyaml.version}</version>
+ </dependency>
+
<!-- 瀹氭椂浠诲姟 -->
<dependency>
<groupId>com.ruoyi</groupId>
--
Gitblit v1.9.3