Skip to content

Commit 224a488

Browse files
jimmyjamesjimmyjames
authored
Update Okio to resolve CVE-2023-3635 (#560)
1 parent 4cd3b3a commit 224a488

1 file changed

Lines changed: 6 additions & 1 deletion

File tree

build.gradle

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -70,7 +70,12 @@ ext {
7070
}
7171

7272
dependencies {
73-
implementation "com.squareup.okhttp3:okhttp:${okhttpVersion}"
73+
// TODO remove direct dependency when OkHttp 4.12.0 is released
74+
implementation ("com.squareup.okhttp3:okhttp:${okhttpVersion}") {
75+
exclude group: 'com.squareup.okhttp3', module: 'okio'
76+
}
77+
implementation "com.squareup.okio:okio:3.5.0"
78+
7479
implementation "com.squareup.okhttp3:logging-interceptor:${okhttpVersion}"
7580
implementation "com.fasterxml.jackson.core:jackson-databind:2.14.2"
7681
implementation "com.auth0:java-jwt:4.4.0"

0 commit comments

Comments
 (0)