From e4b6633e896fb836b02a5c9c5bf2b29ddcaacf7c Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Thu, 26 Jun 2025 18:41:08 +0000
Subject: [PATCH] fix: pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-10500754
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-10345766
---
 pom.xml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pom.xml b/pom.xml
index 4af6d87744..6aa521080e 100644
--- a/pom.xml
+++ b/pom.xml
@@ -311,7 +311,7 @@
         <servlet-api.version>3.1.0</servlet-api.version>
         <sitemesh.version>2.4.2</sitemesh.version>
         <slf4j.version>1.7.10</slf4j.version>
-        <spring.version>6.1.14</spring.version>
+        <spring.version>6.1.21</spring.version>
         <spring-ldap.version>2.0.2.RELEASE</spring-ldap.version>
         <springsecurity.version>6.4.6</springsecurity.version>
         <javax-el.version>2.2.4</javax-el.version>
@@ -329,7 +329,7 @@
         <easymock.version>3.0</easymock.version>
         <hsqldb.version>1.8.0.10</hsqldb.version>
         <mysql.version>5.1.38</mysql.version>
-        <jackson-2-version>2.5.1</jackson-2-version>
+        <jackson-2-version>2.15.0</jackson-2-version>
         <junit.version>4.11</junit.version>
         <selenium-client.version>1.0.2</selenium-client.version>