Skip to content

Commit bd003d6

Browse files
committed
1.4.1 release notes
1 parent 46abded commit bd003d6

File tree

1 file changed

+20
-2
lines changed

1 file changed

+20
-2
lines changed

CHANGELOG.md

Lines changed: 20 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,8 +1,26 @@
11

22
# Changelog
33

4-
## v1.4.1 [unreleased]
5-
WIP
4+
## v1.4.1 [2021-12-21]
5+
This version started using SpringBoot 2.6.1, and had other small code changes, and many dependencies upgraded.
6+
7+
Smaller changes:
8+
- Convert label-schema to OCI annotations #361 @mr-c
9+
10+
Misc fixes:
11+
- Added plug-in configuration for avoiding any usages of outdated log4j2 versions, some of which are subject to the RCE CVE-2021-44228 ("Log4Shell") and CVE-2021-45046 20c58b9d782802de04cdce3e975198940900a504 @mr-c
12+
13+
Dependencies upgrade:
14+
- Upgrade to SpringBoot 2.6.1 #284 @mr-c @etzanis @kinow
15+
- update pip & setuptools #364 @mr-c
16+
- Dependency updates, courtesy of @dependabot-bot
17+
- Bump jackson-core from 2.12.5 to 2.13.0 #358
18+
- Bump jsonld-java from 0.13.3 to 0.13.4 #365
19+
- Bump snakeyaml from 1.29 to 1.30 #366
20+
- Bump hibernate-validator from 6.0.13.Final to 6.0.20.Final #370
21+
- Bump jena-core from 4.3.1 to 4.3.2 #372
22+
- Bump hibernate-validator from 6.0.20.Final to 7.0.1.Final #373
23+
- Bump jackson-core from 2.13.0 to 2.13.1 #374
624

725
## v1.4.0 [2021-10-04]
826
Many updates since 2018, but the most important is the fix (#355) for [CVE-2021-41110](https://github.com/common-workflow-language/cwlviewer/security/advisories/GHSA-7g7j-f5g3-fqp7) courtesy of @kinow

0 commit comments

Comments
 (0)