Code Review / holmes / engine-management.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | inline | side by side
Tried to Fix Some Vulnerability Issues (xstream/retrofit)
[holmes/engine-management.git] / pom.xml
diff --git a/pom.xml b/pom.xml
index ebe105b..c3cb95c 100644 (file)
--- a/pom.xml
+++ b/pom.xml
@@ -149,6 +149,10 @@
                     <groupId>com.squareup.okhttp3</groupId>
                     <artifactId>okhttp</artifactId>
                 </exclusion>
+                <exclusion>
+                    <groupId>com.squareup.retrofit2</groupId>
+                    <artifactId>retrofit</artifactId>
+                </exclusion>
             </exclusions>
         </dependency>
         <dependency>
@@ -206,6 +210,10 @@
                     <groupId>org.slf4j</groupId>
                     <artifactId>slf4j-api</artifactId>
                 </exclusion>
+                <exclusion>
+                    <groupId>com.thoughtworks.xstream</groupId>
+                    <artifactId>xstream</artifactId>
+                </exclusion>
             </exclusions>
         </dependency>
         <dependency>
@@ -257,6 +265,16 @@
             <artifactId>gson</artifactId>
             <version>2.8.6</version>
         </dependency>
+        <dependency>
+            <groupId>com.squareup.retrofit2</groupId>
+            <artifactId>retrofit</artifactId>
+            <version>2.5.0</version>
+        </dependency>
+        <dependency>
+            <groupId>com.thoughtworks.xstream</groupId>
+            <artifactId>xstream</artifactId>
+            <version>1.4.10</version>
+        </dependency>
 
         <!-- Do NOT remove org.reflections:reflections. Otherwise, the docker will fail to start. -->
         <dependency>
This component is designed for the engine management in Holmes. It's mainly responsible for starting and stopping the rule engine. This component can be extended if the number of alarms exceeds the processing limit.