From efd755dea05d061961235ad7250718694ccfb769 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 12 May 2025 04:15:41 +0000 Subject: [PATCH] chore: Bump com.nimbusds:nimbus-jose-jwt from 9.48 to 10.3 in /backend Bumps [com.nimbusds:nimbus-jose-jwt](https://bitbucket.org/connect2id/nimbus-jose-jwt) from 9.48 to 10.3. - [Changelog](https://bitbucket.org/connect2id/nimbus-jose-jwt/src/master/CHANGELOG.txt) - [Commits](https://bitbucket.org/connect2id/nimbus-jose-jwt/branches/compare/10.3..9.48) --- updated-dependencies: - dependency-name: com.nimbusds:nimbus-jose-jwt dependency-version: '10.3' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- backend/build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/backend/build.gradle b/backend/build.gradle index 7a486955..d71fc1fb 100644 --- a/backend/build.gradle +++ b/backend/build.gradle @@ -47,7 +47,7 @@ dependencies { implementation "org.liquibase:liquibase-core" implementation "org.xerial:sqlite-jdbc:${sqliteJdbcVersion}" implementation "org.komamitsu:spring-data-sqlite:${springDataSqliteVersion}" - implementation "com.nimbusds:nimbus-jose-jwt:9.48" // Explicit version to fix CVE-2023-52428 + implementation "com.nimbusds:nimbus-jose-jwt:10.3" // Explicit version to fix CVE-2023-52428 implementation "com.fasterxml.uuid:java-uuid-generator:${javaUuidGeneratorVersion}" implementation "net.logstash.logback:logstash-logback-encoder:${logstashVersion}" implementation "com.github.ben-manes.caffeine:caffeine:${caffeineVersion}"