From bbe8c224d15ab12c7ae0669dacdb5cf85134dbbe Mon Sep 17 00:00:00 2001
From: Tatu Saloranta <tatu.saloranta@iki.fi>
Date: Tue, 3 Mar 2020 16:01:31 -0800
Subject: [PATCH] Update to SnakeYAML 1.26 (CVE-2017-18640)

* https://nvd.nist.gov/vuln/detail/CVE-2017-18640
* https://cwe.mitre.org/data/definitions/776.html
* https://bitbucket.org/asomov/snakeyaml/issues/377

Refs #187
(cherry picked from commit 3e481c65e50cdacd41c97ffc17e8187245f9e09d)
---
 yaml/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/yaml/pom.xml b/yaml/pom.xml
index 4cce70c4..88624abb 100644
--- a/yaml/pom.xml
+++ b/yaml/pom.xml
@@ -30,7 +30,7 @@
     <dependency>
       <groupId>org.yaml</groupId>
       <artifactId>snakeyaml</artifactId>
-      <version>1.23</version>
+      <version>1.26</version>
     </dependency>
 
      <!-- and for testing need annotations -->