diff --git a/pig-common/pig-common-bom/pom.xml b/pig-common/pig-common-bom/pom.xml
index 9c1c1ac16c86140e268faaa49b32188799935462..c8671bbdf827db06d9ced497e9830a306ebba24b 100644
--- a/pig-common/pig-common-bom/pom.xml
+++ b/pig-common/pig-common-bom/pom.xml
@@ -39,6 +39,7 @@
         <git.commit.plugin>4.9.9</git.commit.plugin>
         <flatten-maven-plugin.version>1.6.0</flatten-maven-plugin.version>
         <spring.checkstyle.plugin>0.0.39</spring.checkstyle.plugin>
+        <spring.core.version>5.3.39</spring.core.version>
     </properties>
 
     <!-- 定义全局jar版本,模块使用需要再次引入但不用写版本号-->
@@ -192,6 +193,14 @@
                 <artifactId>mybatis-plus-annotation</artifactId>
                 <version>${mybatis-plus.version}</version>
             </dependency>
+            <!--  spring bom , no cve -->
+            <dependency>
+                <groupId>org.springframework</groupId>
+                <artifactId>spring-framework-bom</artifactId>
+                <version>${spring.core.version}</version>
+                <type>pom</type>
+                <scope>import</scope>
+            </dependency>
             <!--hutool bom 工具类-->
             <dependency>
                 <groupId>cn.hutool</groupId>