From 85e7e7edd425a0f2b4e68fe4512dd8497dc54823 Mon Sep 17 00:00:00 2001
From: agrasth <agrasthn@jfrog.com>
Date: Mon, 16 Mar 2026 14:27:51 +0530
Subject: [PATCH] Fix Security Violation

---
 build.gradle | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/build.gradle b/build.gradle
index 05ecc4f9a..497269085 100644
--- a/build.gradle
+++ b/build.gradle
@@ -22,8 +22,8 @@ buildscript {
         httpClientVersion = '4.5.14'
         httpCoreVersion = '4.4.16'
         ivyVersion = '2.5.2'
-        // Updated to 2.17.3 for security fixes - compatible with Java 8+
-        jacksonVersion = '2.17.3'
+        // Updated to 2.18.6 for security fixes (CVE-2025-52999, GHSA-h46c-h94j-95f3) - compatible with Java 8+
+        jacksonVersion = '2.18.6'
         jdomVersion = '2.0.6.1'
         jsrVersion = '3.0.2'
         mavenVersion = '3.8.6'
@@ -128,7 +128,7 @@ subprojects {
             force 'org.xmlunit:xmlunit-core:2.10.0'
             eachDependency { DependencyResolveDetails details ->
                 if (details.requested.group == 'io.netty') {
-                    details.useVersion('4.1.125.Final')
+                    details.useVersion('4.1.130.Final')
                 }
             }
         }
@@ -143,7 +143,7 @@ subprojects {
     configurations.all {
         resolutionStrategy.eachDependency { details ->
             if (details.requested.group == 'io.netty' && !details.requested.name.startsWith('netty-tcnative')) {
-                details.useVersion '4.1.125.Final'
+                details.useVersion '4.1.130.Final'
             }
             if (details.requested.group == 'org.bouncycastle' &&
                     (details.requested.name == 'bcprov-jdk18on' || details.requested.name == 'bcpkix-jdk18on')) {