[AAI] Update resources to fix security vulnerabilities

Issue-ID: AAI-3414
Signed-off-by: wr148d <wr148d@att.com>
Change-Id: I191395e86b2f48492a9c9bfad3048e1d86b3f153

diff --git a/aai-resources/pom.xml b/aai-resources/pom.xml
index d3537ac..a897467 100644 (file)
--- a/aai-resources/pom.xml
+++ b/aai-resources/pom.xml
@@ -43,6 +43,10 @@
         <aai.base.image>alpine</aai.base.image>
         <aai.base.image.version>1.6.0</aai.base.image.version>
 
+        <netty.handler.version>4.1.63.Final</netty.handler.version>
+        <netty.version>4.1.63.Final</netty.version>
+        <groovy.version>2.5.15</groovy.version>
+
         <!--
              Location where assembly of our scripts, resources and main jar will be held
                 Check the ${project.artifactId}/src/main/assembly/descriptor.xml for more info
@@ -615,6 +619,7 @@
         <dependency>
             <groupId>io.netty</groupId>
             <artifactId>netty-handler</artifactId>
+            <version>${netty.handler.version}</version>
         </dependency>
         <dependency>
             <groupId>org.springframework.boot</groupId>
@@ -633,11 +638,13 @@
         <dependency>
             <groupId>io.netty</groupId>
             <artifactId>netty-all</artifactId>
+            <version>${netty.version}</version>
         </dependency>
         <dependency>
             <groupId>org.codehaus.groovy</groupId>
             <artifactId>groovy</artifactId>
             <classifier>indy</classifier>
+            <version>${groovy.version}</version>
         </dependency>
         <dependency>
             <groupId>org.springframework</groupId>