Skip to content

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.21.4 to 2.22.0#306

Open
shafeeqd959 wants to merge 1 commit into
masterfrom
snyk-upgrade-85fddc74f7a72b3cd3b8ccfd92bd25dd
Open

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.21.4 to 2.22.0#306
shafeeqd959 wants to merge 1 commit into
masterfrom
snyk-upgrade-85fddc74f7a72b3cd3b8ccfd92bd25dd

Conversation

@shafeeqd959

Copy link
Copy Markdown

snyk-top-banner

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.21.4 to 2.22.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 1 version ahead of your current version.

  • The recommended version was released a month ago.

Breaking Change Risk

Merge Risk: Low

Notice: This assessment is enhanced by AI.


Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

…to 2.22.0

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.21.4 to 2.22.0.

See this package in maven:
com.fasterxml.jackson.core:jackson-databind

See this project in Snyk:
https://app.snyk.io/org/contentstack-devex/project/9d1a0a2e-7e56-4c3c-b7a9-b62d7b208d90?utm_source=github&utm_medium=referral&page=upgrade-pr
@shafeeqd959

Copy link
Copy Markdown
Author

Merge Risk: Low

This is a minor version upgrade that consists primarily of maintenance bug fixes and additive features.

Key Changes:

  • No breaking changes are listed in the release notes.
  • The main focus of this release is bug fixes.
  • New features and annotations have been added, such as ObjectNode.put(JsonPointer, JsonNode) and @JsonApplyView, but these are additive and do not affect existing code.
  • Java runtime requirements remain the same (Java 8).

No developer action is expected to be required for this upgrade.

Source: Jackson 2.22 Release Notes

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

@shafeeqd959 shafeeqd959 requested a review from a team as a code owner July 2, 2026 03:31
@github-actions

github-actions Bot commented Jul 2, 2026

Copy link
Copy Markdown

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 0 0 25 ✅ Passed
🟡 Medium Severity 0 1 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

✅ No SLA breaches detected. All vulnerabilities are within acceptable time thresholds.

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 0 90 / 365 days ✅ Passed
🔵 Low 0 0 180 / 365 days ✅ Passed

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 0
  • Medium without fixes: 1
  • Low without fixes: 0

✅ BUILD PASSED - All security checks passed

@github-actions

github-actions Bot commented Jul 2, 2026

Copy link
Copy Markdown

Coverage Summary

  • 📘 Instruction Coverage: 92%
  • 🌿 Branch Coverage: 80%

@netrajpatel netrajpatel left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM // approved in Slack with WorkerB

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants