Update snakeyaml dependency to resolve CVEs

plugin-management-library/pom.xml

@@ -65,6 +65,12 @@
             <artifactId>jackson-dataformat-yaml</artifactId>
             <version>2.13.4</version>
         </dependency>
+        <!-- TODO: Remove when jackson dataformat snakeyaml dependency is at least 1.32 -->
+        <dependency>
+            <groupId>org.yaml</groupId>
+            <artifactId>snakeyaml</artifactId>
+            <version>1.32</version>
+        </dependency>
         <dependency>
             <groupId>com.github.spotbugs</groupId>
             <artifactId>spotbugs-annotations</artifactId>

plugin-management-library/src/test/java/io/jenkins/tools/pluginmanager/impl/PluginManagerIntegrationTest.java

@@ -298,7 +298,7 @@ public void verifyDownloads_smoke() throws Exception {
 
         // Second cycle, with plugin update and new plugin installation
         Plugin trileadAPI = new Plugin("trilead-api", "1.0.13", null, null);
-        Plugin snakeYamlAPI = new Plugin("snakeyaml-api", "1.27.0", null, null);
+        Plugin snakeYamlAPI = new Plugin("snakeyaml-api", "1.31-84.ve43da_fb_49d0b", null, null);
         List<Plugin> requestedPlugins_2 = Arrays.asList(trileadAPI, snakeYamlAPI);
         PluginManager pluginManager2 = initPluginManager(
                 configBuilder -> configBuilder.withPlugins(requestedPlugins_2).withDoDownload(true));

plugin-management-library/src/test/resources/io/jenkins/tools/pluginmanager/impl/plugins.txt

@@ -46,7 +46,7 @@ role-strategy:2.16
 run-condition:1.3
 scm-api:2.6.3
 security-inspector:0.5
-snakeyaml-api:1.26.4
+snakeyaml-api:1.31-84.ve43da_fb_49d0b
 ssh-credentials:1.18.1
 timestamper:1.11.3
 token-macro:2.12