Update dependencies for security vulnerabilities

Update jackson-databind, springboot, and snakeyaml for security
vulnerabilities.

Issue-ID: POLICY-4393
Change-Id: Id8dffa3942f691817ffdea69cf5982f1c2e43e84
Signed-off-by: liamfallon <liam.fallon@est.tech>

diff --git a/integration/pom.xml b/integration/pom.xml
index 195eb62..78ec369 100644 (file)
--- a/integration/pom.xml
+++ b/integration/pom.xml
@@ -45,14 +45,13 @@
         <version.drools>7.73.0.Final</version.drools>
         <version.jersey>2.33</version.jersey>
         <version.jackson>2.12.6</version.jackson>
-        <version.jackson.databind>2.12.6.1</version.jackson.databind>
+        <version.jackson.databind>2.14.0-rc1</version.jackson.databind>
         <version.ccsdk>1.1.5</version.ccsdk>
         <version.swagger>1.6.6</version.swagger>
         <version.javax.bind>2.3.1</version.javax.bind>
         <version.javax.json>1.1.4</version.javax.json>
         <version.netty>4.1.70.Final</version.netty>
-        <version.springboot>2.5.0</version.springboot>
-        <version.springboot.actuator>2.5.4</version.springboot.actuator>
+        <version.springboot>2.7.4</version.springboot>
         <version.hibernate.core>5.4.31.Final</version.hibernate.core>
         <version.eelf.core>1.0.0</version.eelf.core>
         <version.camel>3.7.3</version.camel>
@@ -539,7 +538,7 @@
             <dependency>
                 <groupId>org.yaml</groupId>
                 <artifactId>snakeyaml</artifactId>
-                <version>1.27</version>
+                <version>1.33</version>
             </dependency>
 
             <!-- Drools -->