Fix builds, revert springboot to 2.5.x

Fixing up the dependencies for escurity:
- Springboot > 2.5.x does NOT work with Swagger 2.0 so its reverted
- Jackson and Jackson databind can bow be ont he same version and the
  latest version works fine
- Kafka client has a security issue, so upgrading to latest version

Issue-ID: POLICY-4393
Change-Id: If9c68c1c3df3a426dcbb81f35ac561baf870e6fb
Signed-off-by: liamfallon <liam.fallon@est.tech>

diff --git a/integration/pom.xml b/integration/pom.xml
index 78ec369..67c4f52 100644 (file)
--- a/integration/pom.xml
+++ b/integration/pom.xml
@@ -44,14 +44,13 @@
         <version.eclipselink>2.7.8</version.eclipselink>
         <version.drools>7.73.0.Final</version.drools>
         <version.jersey>2.33</version.jersey>
-        <version.jackson>2.12.6</version.jackson>
-        <version.jackson.databind>2.14.0-rc1</version.jackson.databind>
+        <version.jackson>2.14.0-rc1</version.jackson>
         <version.ccsdk>1.1.5</version.ccsdk>
         <version.swagger>1.6.6</version.swagger>
         <version.javax.bind>2.3.1</version.javax.bind>
         <version.javax.json>1.1.4</version.javax.json>
         <version.netty>4.1.70.Final</version.netty>
-        <version.springboot>2.7.4</version.springboot>
+        <version.springboot>2.5.14</version.springboot>
         <version.hibernate.core>5.4.31.Final</version.hibernate.core>
         <version.eelf.core>1.0.0</version.eelf.core>
         <version.camel>3.7.3</version.camel>
@@ -63,7 +62,7 @@
         <version.io.micrometer>1.7.3</version.io.micrometer>
         <version.io.prometheus>0.11.0</version.io.prometheus>
         <version.postgres>42.5.0</version.postgres>
-        <version.kafka>3.0.0</version.kafka>
+        <version.kafka>3.3.1</version.kafka>
         <jacoco.dataFile>${project.basedir}/../target/code-coverage/jacoco-ut.exec</jacoco.dataFile>
         <repo.npm>https://nexus3.onap.org/repository/npm.public/npm/-/</repo.npm>
         <docker.pull.registry>nexus3.onap.org:10001</docker.pull.registry>
@@ -101,7 +100,7 @@
             <dependency>
                 <groupId>com.fasterxml.jackson.core</groupId>
                 <artifactId>jackson-databind</artifactId>
-                <version>${version.jackson.databind}</version>
+                <version>${version.jackson}</version>
             </dependency>
 
             <dependency>
@@ -901,6 +900,11 @@
                 <artifactId>spring-boot-starter-tomcat</artifactId>
                 <version>${version.springboot}</version>
             </dependency>
+            <dependency>
+                <groupId>org.springframework.boot</groupId>
+                <artifactId>spring-boot-starter-actuator</artifactId>
+                <version>${version.springboot}</version>
+            </dependency>
             <dependency>
                 <groupId>org.springframework.boot</groupId>
                 <artifactId>spring-boot-autoconfigure</artifactId>