fix guava security violation

Change-Id: Icc12417856638602ac114470d6a8aab8a0bb5280
Issue-ID: SDC-1471
Signed-off-by: Yuli Shlosberg <ys9693@att.com>

diff --git a/pom.xml b/pom.xml
index d545367..f0383b1 100644 (file)
--- a/pom.xml
+++ b/pom.xml
@@ -78,11 +78,23 @@
     <version>1.3.2</version>
 </dependency>
 
-               <dependency>
-                       <groupId>org.reflections</groupId>
-                       <artifactId>reflections</artifactId>
-                       <version>0.9.11</version>
-               </dependency>
+        <dependency>
+            <groupId>org.reflections</groupId>
+            <artifactId>reflections</artifactId>
+            <version>0.9.11</version>
+            <exclusions>
+                <exclusion>  <!-- declare the exclusion here -->
+                    <groupId>com.google.guava</groupId>
+                    <artifactId>guava</artifactId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <dependency>
+            <groupId>com.google.guava</groupId>
+            <artifactId>guava</artifactId>
+                       <scope>compile</scope>
+            <version>25.1-jre</version>
+        </dependency>
                
        </dependencies>