Some dependencies were missing in oparent and then did not respect the
spring.version parameter for setting the spring version, dragging in the
vulnerable version of spring-beans.
Issue-ID: POLICY-4070
Change-Id: I819062a6165bbec33498414c4f4401cb41475028
Signed-off-by: liamfallon <liam.fallon@est.tech>
.project
.settings
.classpath
.project
.settings
.classpath
<artifactId>spring-core</artifactId>
<version>${spring.version}</version>
</dependency>
<artifactId>spring-core</artifactId>
<version>${spring.version}</version>
</dependency>
+ <dependency>
+ <groupId>org.springframework</groupId>
+ <artifactId>spring-beans</artifactId>
+ <version>${spring.version}</version>
+ </dependency>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-expression</artifactId>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-expression</artifactId>
<artifactId>spring-webmvc</artifactId>
<version>${spring.version}</version>
</dependency>
<artifactId>spring-webmvc</artifactId>
<version>${spring.version}</version>
</dependency>
+ <dependency>
+ <groupId>org.springframework</groupId>
+ <artifactId>spring-jdbc</artifactId>
+ <version>${spring.version}</version>
+ </dependency>
+ <dependency>
+ <groupId>org.springframework</groupId>
+ <artifactId>spring-webflux</artifactId>
+ <version>${spring.version}</version>
+ </dependency>
<dependency>
<groupId>commons-beanutils</groupId>
<artifactId>commons-beanutils</artifactId>
<dependency>
<groupId>commons-beanutils</groupId>
<artifactId>commons-beanutils</artifactId>