RecSys2018 icon indicating copy to clipboard operation
RecSys2018 copied to clipboard
verified publisher icon layer6ai-labs

Update Json-smart 2.2.1 -> 2.4.5

Open chen-zirui opened this issue 2 years ago • 0 comments

Update Dependencies to Address Security Vulnerabilities

Description

The purpose of this Pull Request is to update the project's dependencies to address recently discovered security vulnerabilities. These vulnerabilities could potentially lead to unforeseen consequences, making it advisable to adopt this update promptly.

Affected Dependencies

In this update, we are primarily addressing vulnerabilities in the following dependencies:

  • JSON-smart: CVE-2021-27568

Updates

We recommend updating the following dependency versions to their latest releases to fix the vulnerabilities:

  • JSON-smart: 2.2.1 -> 2.4.5

Testing

package main;

import org.junit.Test;
import static org.junit.Assert.*;
import java.util.HashMap;
import java.util.Map;
import main.Song;
import net.minidev.json.JSONObject;
import net.minidev.json.JSONStyle;


import org.junit.runner.RunWith;
public class Song_ESTest{
@Test(timeout = 4000)
  public void test02()  throws Throwable  {
      JSONObject jSONObject0 = new JSONObject();
      Integer integer0 = new Integer("-.");
      jSONObject0.put("duration_ms", integer0);
      Song song0 = new Song(jSONObject0);
  }
}

chen-zirui avatar Jan 08 '24 05:01 chen-zirui