diff --git a/build.gradle.kts b/build.gradle.kts index 3a9a458..8bc5172 100644 --- a/build.gradle.kts +++ b/build.gradle.kts @@ -35,7 +35,7 @@ dependencies { implementation ("org.apache.commons:commons-lang3:3.9") implementation ("org.apache.commons:commons-collections4:4.4") - implementation ("org.springframework.boot:spring-boot-starter-web:2.5.10") // Secure and stable + implementation ("org.springframework.boot:spring-boot-starter-web:2.6.6") // Patched for CVE-2022-22965 (Spring4Shell) // Upgrade to Log4j2 which resolves vulnerabilities found in Log4j 1.x implementation ("org.apache.logging.log4j:log4j-core:2.14.1")