[🐸 Frogbot] Update version of com.fasterxml.jackson.core:jackson-core to 2.18.6 by github-actions[bot] · Pull Request #45 · jfrog/bamboo-jfrog-plugin

github-actions · 2026-03-01T00:29:14Z

Severity	ID	Contextual Analysis	Direct Dependencies	Impacted Dependency	Fixed Versions
High	-	Not Covered	com.fasterxml.jackson.core:jackson-core:2.17.2	com.fasterxml.jackson.core:jackson-core 2.17.2	[2.18.6] [2.21.1] [3.1.0]


Contextual Analysis:	Not Covered
Direct Dependencies:	com.fasterxml.jackson.core:jackson-core:2.17.2
Impacted Dependency:	com.fasterxml.jackson.core:jackson-core:2.17.2
Fixed Versions:	[2.18.6], [2.21.1], [3.1.0]
CVSS V3:	-

jackson-core: Number Length Constraint Bypass in Async Parser Leads to Potential DoS Condition

Upgrade com.fasterxml.jackson.core:jackson-core to 2.18.6

60e76cc

Provide feedback