From 00946d3f054800bc89ac7abdfede33a5ae2e5a14 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 13 Nov 2024 03:05:14 +0000
Subject: [PATCH] fix: webgoat-lessons/vulnerable-components/pom.xml to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-8352924
---
 webgoat-lessons/vulnerable-components/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/webgoat-lessons/vulnerable-components/pom.xml b/webgoat-lessons/vulnerable-components/pom.xml
index dfc9104c64..2baa91aa8e 100644
--- a/webgoat-lessons/vulnerable-components/pom.xml
+++ b/webgoat-lessons/vulnerable-components/pom.xml
@@ -12,7 +12,7 @@
         <dependency>
             <groupId>com.thoughtworks.xstream</groupId>
             <artifactId>xstream</artifactId>
-            <version>1.4.5</version> <!-- do not update necessary for lesson -->
+            <version>1.4.21</version> <!-- do not update necessary for lesson -->
         </dependency>
         <dependency>
             <groupId>cglib</groupId>