From 1f97b9928d54bc6cf4c9182656e9abdf6c717d1f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 9 Sep 2020 00:17:00 +0000
Subject: [PATCH] fix: pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHELOGGINGLOG4J-567761
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATE-584563
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-537645
---
 pom.xml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pom.xml b/pom.xml
index e0dd7b0..7b1e758 100644
--- a/pom.xml
+++ b/pom.xml
@@ -49,7 +49,7 @@
 		<dependency>
 			<groupId>org.apache.logging.log4j</groupId>
 			<artifactId>log4j-core</artifactId>
-			<version>2.5</version>
+			<version>2.13.2</version>
 		</dependency>
 		<dependency>
 			<groupId>com.h2database</groupId>
@@ -59,7 +59,7 @@
 		<dependency>
 			<groupId>org.hibernate</groupId>
 			<artifactId>hibernate-core</artifactId>
-			<version>4.3.10.Final</version>
+			<version>5.3.18.Final</version>
 		</dependency>
 	</dependencies>
 	<build>