Address CVE-2023-1370

Bump oauth2-oidc-sdk to 10.7.1 to update json-smart to 2.4.10
3 years ago · ce5570bb06
1 changed files with 1 additions and 1 deletions
--- a/dependencies/spring-security-dependencies.gradle
+++ b/dependencies/spring-security-dependencies.gradle
@ -20,7 +20,7 @@ dependencies {
				@@ -20,7 +20,7 @@ dependencies {
 		api "ch.qos.logback:logback-classic:1.2.12"
 		api "com.google.inject:guice:3.0"
 		api "com.nimbusds:nimbus-jose-jwt:9.24.4"
-		api "com.nimbusds:oauth2-oidc-sdk:9.43.1"
+		api "com.nimbusds:oauth2-oidc-sdk:10.7.1"
 		api "com.squareup.okhttp3:mockwebserver:3.14.9"
 		api "com.squareup.okhttp3:okhttp:3.14.9"
 		api "com.unboundid:unboundid-ldapsdk:4.0.14"