From 57c142246806e3767cec290222ed80369312fdf9 Mon Sep 17 00:00:00 2001
From: Lee Dongjin <dongjin@apache.org>
Date: Fri, 21 May 2021 16:07:07 +0900
Subject: [PATCH] KAFKA-12820: Upgrade maven-artifact dependency to resolve
 CVE-2021-26291

CVE-2021-26291, which makes Man-In-The-Middle-Attack possible, was fixed in maven 3.8.1.

Reviewers: Luke Chen <showuon@gmail.com>, Manikumar Reddy <manikumar.reddy@gmail.com>
---
 gradle/dependencies.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gradle/dependencies.gradle b/gradle/dependencies.gradle
index 9fd9aaae038..48e9b1232ce 100644
--- a/gradle/dependencies.gradle
+++ b/gradle/dependencies.gradle
@@ -97,7 +97,7 @@ versions += [
   kafka_26: "2.6.2",
   kafka_27: "2.7.1",
   lz4: "1.7.1",
-  mavenArtifact: "3.6.3",
+  mavenArtifact: "3.8.1",
   metrics: "2.2.0",
   mockito: "3.9.0",
   netty: "4.1.62.Final",