IS: Upgrade snakeyaml transitive dependency

Se https://github.com/navikt/syfooversiktsrv/security/dependabot/1 for sårbarhet.
navikt · Oct 13, 2023 · 68acf75 · 68acf75
1 parent 74cfb66
commit 68acf75
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/build.gradle.kts b/build.gradle.kts
@@ -100,9 +100,9 @@ dependencies {
             }
         }
         implementation("org.yaml:snakeyaml") {
-            because("io.confluent:kafka-schema-registry:${Versions.confluent} -> https://advisory.checkmarx.net/advisory/vulnerability/CVE-2022-25857/")
+            because("io.confluent:kafka-schema-registry:${Versions.confluent} -> https://nvd.nist.gov/vuln/detail/CVE-2022-1471")
             version {
-                require("1.33")
+                require("2.0")
             }
         }
         implementation("org.glassfish:jakarta.el") {