Some of these were ommitted from compile while others
were not completely ommitted.
Upgraded maven-compiler since it upgraded plexus-utils
Upgraded latest version of jackson-databind 2.9.5
Issue-ID: POLICY-507
Change-Id: If92ff4355329c48fbe76e0245d6c8344ebb8084d
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
<dependency>
<groupId>org.apache.maven</groupId>
<artifactId>maven-model</artifactId>
- <version>3.3.9</version>
+ <version>3.5.3</version>
</dependency>
<dependency>
<groupId>org.apache.maven.shared</groupId>
<groupId>commons-collections</groupId>
<artifactId>commons-collections</artifactId>
</exclusion>
+ <exclusion>
+ <groupId>com.thoughtworks.xstream</groupId>
+ <artifactId>xstream</artifactId>
+ </exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>mysql</groupId>
<artifactId>mysql-connector-java</artifactId>
</exclusion>
+ <exclusion>
+ <groupId>com.thoughtworks.xstream</groupId>
+ <artifactId>xstream</artifactId>
+ </exclusion>
</exclusions>
</dependency>
<!-- Spring -->
<dependency>
<groupId>org.apache.maven</groupId>
<artifactId>maven-model</artifactId>
- <version>3.3.9</version>
+ <version>3.5.3</version>
</dependency>
<!--
CLM security fix - force use of xstream
<jetty.plugin.version>9.2.3.v20140905</jetty.plugin.version>
<dmaap.version>1.1.3</dmaap.version>
<httpclient.version>4.5.5</httpclient.version>
- <jackson.version>2.9.4</jackson.version>
+ <jackson.version>2.9.5</jackson.version>
<commons.fileupload.version>1.3.3</commons.fileupload.version>
</properties>
<modules>