Remove dependencies with vulnerabilities

Upgrade commons-fileupload : commons-fileupload to 1.3.3

Upgrade com.fasterxml.jackson.core : jackson-databind to 2.8.7

Change-Id: I6a9f074b07dea59327ca79f945473767d57d5aa8
Issue-ID: SO-537
Signed-off-by: Arthur Martella <amartell@research.att.com>

diff --git a/bpmn/MSOURN-plugin/pom.xml b/bpmn/MSOURN-plugin/pom.xml
index 0dc8d6d..b2db869 100644 (file)
--- a/bpmn/MSOURN-plugin/pom.xml
+++ b/bpmn/MSOURN-plugin/pom.xml
@@ -31,7 +31,7 @@
                <dependency>\r
                        <groupId>commons-fileupload</groupId>\r
                        <artifactId>commons-fileupload</artifactId>\r
-                       <version>1.3.2</version>\r
+                       <version>1.3.3</version>\r
                </dependency>\r
                <dependency>\r
                        <groupId>javax.ws.rs</groupId>\r

diff --git a/mso-api-handlers/mso-api-handler-infra/pom.xml b/mso-api-handlers/mso-api-handler-infra/pom.xml
index 97bfc0d..110c4da 100644 (file)
--- a/mso-api-handlers/mso-api-handler-infra/pom.xml
+++ b/mso-api-handlers/mso-api-handler-infra/pom.xml
@@ -21,7 +21,7 @@
                <jax-rs-version>1.1.1</jax-rs-version>
                <json4s-jackson-version>3.2.4</json4s-jackson-version>
                <json4s-core-version>3.0.0</json4s-core-version>
-               <fasterxml-json-version>2.2.2</fasterxml-json-version>
+               <fasterxml-json-version>2.8.7</fasterxml-json-version>
                <scala-lang-version>2.9.1-1</scala-lang-version>
                <reflections-version>0.9.9-RC1</reflections-version>
                <javassist-version>3.16.1-GA</javassist-version>