From 4fd270b1302cf16a0aa95dbb50a2978f4afe7c13 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 15 Jul 2025 05:06:33 +0000
Subject: [PATCH] fix: functions-framework-invoker/pom.xml to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-10734078
- https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-10500754
---
 functions-framework-invoker/pom.xml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/functions-framework-invoker/pom.xml b/functions-framework-invoker/pom.xml
index 516f88a8..59b55b72 100644
--- a/functions-framework-invoker/pom.xml
+++ b/functions-framework-invoker/pom.xml
@@ -66,12 +66,12 @@
         <dependency>
             <groupId>org.apache.eventmesh</groupId>
             <artifactId>eventmesh-connector-openfunction</artifactId>
-            <version>1.9.0-release</version>
+            <version>1.11.0-release</version>
         </dependency>
         <dependency>
             <groupId>org.apache.eventmesh</groupId>
             <artifactId>eventmesh-sdk-java</artifactId>
-            <version>1.9.0-release</version>
+            <version>1.11.0-release</version>
         </dependency>
         <dependency>
             <groupId>io.cloudevents</groupId>
@@ -114,7 +114,7 @@
         <dependency>
             <groupId>io.dapr</groupId>
             <artifactId>dapr-sdk</artifactId>
-            <version>1.8.0</version>
+            <version>1.12.1</version>
         </dependency>
         <dependency>
             <groupId>io.dapr</groupId>
@@ -193,7 +193,7 @@
         <dependency>
             <groupId>com.fasterxml.jackson.core</groupId>
             <artifactId>jackson-databind</artifactId>
-            <version>2.14.2</version>
+            <version>2.15.0</version>
         </dependency>
 
         <dependency>