Uplift of logback dependencies

- Fix for CVEs 2024-12801 and 2024-12798
- spring dependencies affected

Issue-ID: POLICY-5234
Change-Id: I2a3ad0b3834fabfc90cb0c6a97464ab61f29c194
Signed-off-by: adheli.tavares <adheli.tavares@est.tech>

diff --git a/docs/development/prometheus-metrics.rst b/docs/development/prometheus-metrics.rst
index 7453231..e7d4d3a 100644 (file)
--- a/docs/development/prometheus-metrics.rst
+++ b/docs/development/prometheus-metrics.rst
@@ -188,6 +188,6 @@ Key metrics for Policy Distribution
 ===================================================================
 
 Policy Framework uses ServiceMonitor custom resource definition (CRD) to allow Prometheus to monitor the services it exposes. Label selection is used to determine which services are selected to be monitored.
-For label management and troubleshooting refer to the documentation at: `Prometheus operator <https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/troubleshooting.md>`__.
+For label management and troubleshooting refer to the documentation at: `Prometheus operator <https://github.com/prometheus-operator/prometheus-operator/tree/main/Documentation>`__.
 
-`OOM charts <https://github.com/onap/oom/tree/master/kubernetes/policy/components>`__ for policy include ServiceMonitor and properties can be overrided based on the deployment specifics.
+`OOM charts <https://github.com/onap/oom/tree/master/kubernetes/policy/components>`__ for policy include ServiceMonitor and properties can be overwritten based on the deployment specifics.

diff --git a/integration/pom.xml b/integration/pom.xml
index f48b7d0..44f4b44 100644 (file)
--- a/integration/pom.xml
+++ b/integration/pom.xml
@@ -75,7 +75,7 @@
         <version.kafka>3.8.1</version.kafka>
         <version.kotlin>2.0.20</version.kotlin>
         <version.log4j>2.23.1</version.log4j>
-        <version.logback>1.5.12</version.logback>
+        <version.logback>1.5.15</version.logback>
         <version.maven-checkstyle-plugin>3.3.1</version.maven-checkstyle-plugin>
         <version.maven-remote-resources-plugin>3.1.0</version.maven-remote-resources-plugin>
         <version.micrometer>1.13.6</version.micrometer>
@@ -89,10 +89,10 @@
         <version.sdc-dist>2.1.1</version.sdc-dist>
         <version.sdc-tosca>1.9.0</version.sdc-tosca>
         <version.slf4j>2.0.13</version.slf4j>
-        <version.spring>6.1.14</version.spring>
-        <version.springboot>3.3.5</version.springboot>
-        <version.spring-data>3.3.5</version.spring-data>
-        <version.spring-security>6.3.4</version.spring-security>
+        <version.spring>6.1.16</version.spring>
+        <version.springboot>3.3.7</version.springboot>
+        <version.spring-data>3.3.7</version.spring-data>
+        <version.spring-security>6.3.6</version.spring-security>
         <version.sonar>3.11.0.3922</version.sonar>
         <version.swagger.codegen.v3>3.0.52</version.swagger.codegen.v3>
         <version.swagger.core.v3>2.2.25</version.swagger.core.v3>
@@ -512,7 +512,7 @@
             <dependency>
                 <groupId>org.apache.tomcat.embed</groupId>
                 <artifactId>tomcat-embed-core</artifactId>
-                <version>10.1.31</version>
+                <version>10.1.34</version>
             </dependency>
             <dependency>
                 <groupId>org.aspectj</groupId>