From ff42bd5a240a9ef9ad2703aa2760edd402014a86 Mon Sep 17 00:00:00 2001
From: "scala-steward-projectglow[bot]"
 <159218053+scala-steward-projectglow[bot]@users.noreply.github.com>
Date: Sun, 25 Jan 2026 00:16:49 +0000
Subject: [PATCH] Update avro to 1.11.5

---
 build.sbt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build.sbt b/build.sbt
index 8c49c665f..acf3495c8 100644
--- a/build.sbt
+++ b/build.sbt
@@ -191,7 +191,7 @@ ThisBuild / coreDependencies := (providedSparkDependencies.value ++ testCoreDepe
   "org.yaml" % "snakeyaml" % "2.2",
   "com.univocity" % "univocity-parsers" % "2.9.1",
   // Fix CVE: Upgrade Avro to 1.11.4+ to fix Arbitrary Code Execution vulnerability
-  "org.apache.avro" % "avro" % "1.11.4"
+  "org.apache.avro" % "avro" % "1.11.5"
 )).map(_.exclude("com.google.code.findbugs", "jsr305"))
 
 lazy val root = (project in file(".")).aggregate(core, python, docs)