From f1f5d9e3126cd97540f2b7be3a97bc291e8b3b8b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 4 Aug 2025 21:14:53 +0000 Subject: [PATCH] chore(deps): bump org.apache.commons:commons-compress Bumps [org.apache.commons:commons-compress](https://github.com/apache/commons-compress) from 1.26.0 to 1.28.0. - [Changelog](https://github.com/apache/commons-compress/blob/master/RELEASE-NOTES.txt) - [Commits](https://github.com/apache/commons-compress/compare/rel/commons-compress-1.26.0...rel/commons-compress-1.28.0) --- updated-dependencies: - dependency-name: org.apache.commons:commons-compress dependency-version: 1.28.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .../protocol/http-client-engines/test-suite/build.gradle.kts | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/runtime/protocol/http-client-engines/test-suite/build.gradle.kts b/runtime/protocol/http-client-engines/test-suite/build.gradle.kts index ece9d6e102..cca6835103 100644 --- a/runtime/protocol/http-client-engines/test-suite/build.gradle.kts +++ b/runtime/protocol/http-client-engines/test-suite/build.gradle.kts @@ -48,7 +48,7 @@ kotlin { // FIXME docker-java has a ton of dependencies with vulnerabilities, and they don't seem motivated to fix them. // So we must override their dependencies with the latest patched versions. https://github.com/docker-java/docker-java/issues/1974 implementation("com.fasterxml.jackson.core:jackson-databind:2.12.7.1") // https://github.com/docker-java/docker-java/issues/2177 - implementation("org.apache.commons:commons-compress:1.26.0") // https://github.com/docker-java/docker-java/pull/2256 + implementation("org.apache.commons:commons-compress:1.28.0") // https://github.com/docker-java/docker-java/pull/2256 implementation("org.bouncycastle:bcpkix-jdk18on:1.78") // https://github.com/docker-java/docker-java/pull/2326 implementation(libs.docker.transport.zerodep)