Upgrade JSON to 20231013 to fix CVE-2023-5072

Signed-off-by: Derek Ho <dxho@amazon.com>
opensearch-project · Oct 16, 2023 · 0b4b3f3 · 0b4b3f3
1 parent c23e6f2
commit 0b4b3f3
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/build.gradle b/build.gradle
@@ -166,7 +166,7 @@ dependencies {
     implementation "org.jetbrains.kotlin:kotlin-stdlib-common:${kotlin_version}"
     implementation "org.jetbrains.kotlinx:kotlinx-coroutines-core:1.3.9"
     implementation "${group}:common-utils:${common_utils_version}"
-    implementation 'org.json:json:20230227'
+    implementation 'org.json:json:20231013'
     implementation group: 'com.github.wnameless.json', name: 'json-flattener', version: '0.15.1'
     // json-base, jackson-databind, jackson-annotations are only used by json-flattener.
     // see https://github.com/opensearch-project/OpenSearch/issues/5395.