[OOM-CERT-SERVICE]Fix Apache log4j2 vulnerability

[oom/platform/cert-service.git] / certService / pom.xml

diff --git a/certService/pom.xml b/certService/pom.xml
index 635d17d..13fed00 100644 (file)
--- a/certService/pom.xml
+++ b/certService/pom.xml
@@ -16,14 +16,14 @@
   xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
     <modelVersion>4.0.0</modelVersion>
     <parent>
-        <groupId>org.onap.aaf.certservice</groupId>
-        <artifactId>aaf-certservice</artifactId>
-        <version>1.0.2-SNAPSHOT</version>
+        <groupId>org.onap.oom.platform.cert-service</groupId>
+        <artifactId>oom-certservice</artifactId>
+        <version>2.5.0-SNAPSHOT</version>
     </parent>
-    <artifactId>aaf-certservice-api</artifactId>
-    <version>1.0.2-SNAPSHOT</version>
-    <name>aaf-certservice-api</name>
-    <description>AAF Certification Service Api</description>
+    <artifactId>oom-certservice-api</artifactId>
+    <version>2.5.0-SNAPSHOT</version>
+    <name>oom-certservice-api</name>
+    <description>OOM Certification Service Api</description>
     <packaging>jar</packaging>
 
     <dependencies>
@@ -32,8 +32,24 @@
             <artifactId>spring-boot-starter-web</artifactId>
         </dependency>
         <dependency>
-            <groupId>org.springframework.boot</groupId>
-            <artifactId>spring-boot-starter-log4j2</artifactId>
+            <groupId>org.apache.logging.log4j</groupId>
+            <artifactId>log4j-slf4j-impl</artifactId>
+            <version>${log4j2.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.logging.log4j</groupId>
+            <artifactId>log4j-api</artifactId>
+            <version>${log4j2.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.logging.log4j</groupId>
+            <artifactId>log4j-core</artifactId>
+            <version>${log4j2.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.logging.log4j</groupId>
+            <artifactId>log4j-jul</artifactId>
+            <version>${log4j2.version}</version>
         </dependency>
         <dependency>
             <groupId>org.springframework.boot</groupId>
@@ -78,7 +94,14 @@
         <dependency>
             <groupId>org.springframework.cloud</groupId>
             <artifactId>spring-cloud-starter-config</artifactId>
-            <version>${spring-cloud-starter-config.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.cloud</groupId>
+            <artifactId>spring-cloud-starter-bootstrap</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.hibernate.validator</groupId>
+            <artifactId>hibernate-validator</artifactId>
         </dependency>
     </dependencies>
 
@@ -161,7 +184,7 @@
                             <images>
                                 <image>
                                     <alias>${project.artifactId}</alias>
-                                    <name>${docker-image.namespace}/${docker-image.name}
+                                    <name>${docker-image.namespace}/${docker-image.name}:${docker-image.tag.latest}
                                     </name>
                                     <registry>${docker-image.registry}</registry>
                                     <build>
@@ -182,12 +205,12 @@
     <distributionManagement>
         <repository>
             <id>ecomp-releases</id>
-            <name>AAF Release Repository</name>
+            <name>OOM Release Repository</name>
             <url>${nexusproxy}${releaseNexusPath}</url>
         </repository>
         <snapshotRepository>
             <id>ecomp-snapshots</id>
-            <name>AAF Snapshot Repository</name>
+            <name>OOM Snapshot Repository</name>
             <url>${nexusproxy}${snapshotNexusPath}</url>
         </snapshotRepository>
         <site>