patch for CVE-2023-6378 logback vulnerability

JKatzwinkel · Dec 1, 2023 · 02a38a0 · 02a38a0
1 parent eec122c
commit 02a38a0
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/build.gradle b/build.gradle
@@ -89,6 +89,7 @@ dependencies {
     implementation 'org.springframework.boot:spring-boot-starter-thymeleaf:3.2.0'
     implementation 'nz.net.ultraq.thymeleaf:thymeleaf-layout-dialect:3.3.0'
     implementation 'org.apache.commons:commons-lang3:3.14.0'
+    implementation 'ch.qos.logback:logback-classic:1.4.12' // CVE-2023-6378
 
     implementation 'com.github.jkatzwinkel:tla-common:main-SNAPSHOT'
     implementation('com.github.rosmord.jsesh:jsesh:release-7.6.1') {