From 9c5ab8f5aa9d6e43ab8a2a423d1f255171c56a2c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 26 Jan 2026 01:20:05 +0000 Subject: [PATCH] chore(deps): Bump com.google.guava:guava from 33.4.0-jre to 33.5.0-jre Bumps [com.google.guava:guava](https://github.com/google/guava) from 33.4.0-jre to 33.5.0-jre. - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) --- updated-dependencies: - dependency-name: com.google.guava:guava dependency-version: 33.5.0-jre dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- build.gradle.kts | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle.kts b/build.gradle.kts index f1183e6..d71bf88 100644 --- a/build.gradle.kts +++ b/build.gradle.kts @@ -16,7 +16,7 @@ subprojects { force("io.netty:netty-common:4.1.129.Final") // Guava vulnerability (CVE-2023-2976) - force("com.google.guava:guava:33.4.0-jre") + force("com.google.guava:guava:33.5.0-jre") // Protobuf vulnerability (CVE-2024-7254) force("com.google.protobuf:protobuf-java:4.29.3")