Code Review / sdc.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 7c971a2)
Update vulnerable dependencies 70/129770/5
authorvasraz <vasyl.razinkov@est.tech>
Sat, 2 Jul 2022 23:54:33 +0000 (00:54 +0100)
committerAndr� Schmid <andre.schmid@est.tech>
Tue, 5 Jul 2022 14:49:55 +0000 (14:49 +0000)
Signed-off-by: Vasyl Razinkov <vasyl.razinkov@est.tech>
Change-Id: I24d9a59b483057187a57d2e43d82accebbf8fc57
Issue-ID: SDC-4017

catalog-be/pom.xml patch | blob | history
common-app-api/pom.xml patch | blob | history
common-be-tests-utils/pom.xml patch | blob | history
common-be/pom.xml patch | blob | history
pom.xml patch | blob | history

diff --git a/catalog-be/pom.xml b/catalog-be/pom.xml
index 1187392..58c2f24 100644 (file)
--- a/catalog-be/pom.xml
+++ b/catalog-be/pom.xml
@@ -288,8 +288,17 @@
                     <groupId>org.hibernate</groupId>
                     <artifactId>hibernate-validator</artifactId>
                 </exclusion>
+                <exclusion>
+                    <groupId>org.glassfish</groupId>
+                    <artifactId>jakarta.el</artifactId>
+                </exclusion>
             </exclusions>
         </dependency>
+        <dependency>
+            <groupId>org.glassfish</groupId>
+            <artifactId>jakarta.el</artifactId>
+            <version>${jakarta.el.version}</version>
+        </dependency>
 
         <!-- http client -->
         <dependency>
diff --git a/common-app-api/pom.xml b/common-app-api/pom.xml
index d51fb57..7905404 100644 (file)
--- a/common-app-api/pom.xml
+++ b/common-app-api/pom.xml
@@ -17,6 +17,12 @@
       <groupId>org.springframework.boot</groupId>
       <artifactId>spring-boot-starter</artifactId>
       <version>${spring.boot.version}</version>
+      <exclusions>
+        <exclusion>
+          <groupId>org.yaml</groupId>
+          <artifactId>snakeyaml</artifactId>
+        </exclusion>
+      </exclusions>
     </dependency>
     <dependency>
       <groupId>org.onap.sdc.sdc-be-common</groupId>
@@ -55,8 +61,18 @@
           <groupId>org.onap.portal.sdk</groupId>
           <artifactId>epsdk-fw</artifactId>
         </exclusion>
+        <exclusion>
+          <groupId>org.glassfish</groupId>
+          <artifactId>jakarta.el</artifactId>
+        </exclusion>
       </exclusions>
     </dependency>
+    <dependency>
+      <groupId>org.glassfish</groupId>
+      <artifactId>jakarta.el</artifactId>
+      <version>${jakarta.el.version}</version>
+    </dependency>
+
     <dependency>
       <groupId>commons-io</groupId>
       <artifactId>commons-io</artifactId>
diff --git a/common-be-tests-utils/pom.xml b/common-be-tests-utils/pom.xml
index 4d0cfb4..b2b04be 100644 (file)
--- a/common-be-tests-utils/pom.xml
+++ b/common-be-tests-utils/pom.xml
@@ -22,7 +22,18 @@
         <dependency>
             <groupId>io.minio</groupId>
             <artifactId>minio</artifactId>
-            <version>8.3.4</version>
+            <version>${minio.version}</version>
+            <exclusions>
+                <exclusion>
+                    <groupId>com.squareup.okhttp3</groupId>
+                    <artifactId>okhttp</artifactId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <dependency>
+            <groupId>com.squareup.okhttp3</groupId>
+            <artifactId>okhttp</artifactId>
+            <version>${okhttp.version}</version>
         </dependency>
 
         <!-- Common of SD&C -->
diff --git a/common-be/pom.xml b/common-be/pom.xml
index 3f8a975..02a3a3a 100644 (file)
--- a/common-be/pom.xml
+++ b/common-be/pom.xml
@@ -22,7 +22,18 @@
         <dependency>
             <groupId>io.minio</groupId>
             <artifactId>minio</artifactId>
-            <version>8.3.4</version>
+            <version>${minio.version}</version>
+            <exclusions>
+                <exclusion>
+                    <groupId>com.squareup.okhttp3</groupId>
+                    <artifactId>okhttp</artifactId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <dependency>
+            <groupId>com.squareup.okhttp3</groupId>
+            <artifactId>okhttp</artifactId>
+            <version>${okhttp.version}</version>
         </dependency>
 
         <!-- Common of SD&C -->
diff --git a/pom.xml b/pom.xml
index 7e2165d..fcd64ae 100644 (file)
--- a/pom.xml
+++ b/pom.xml
@@ -49,7 +49,12 @@ Modifications copyright (c) 2018-2019 Nokia
         <janusgraph.version>0.3.3</janusgraph.version>
         <spring.version>5.3.18</spring.version>
         <spring.boot.version>2.2.13.RELEASE</spring.boot.version>
+
+        <!-- update to 2.36 bring error-->
+        <!-- java.lang.NoClassDefFoundError: com/fasterxml/jackson/databind/AnnotationIntrospector$XmlExtensions-->
         <jersey-bom.version>2.34</jersey-bom.version>
+        <jakarta.el.version>3.0.4</jakarta.el.version>
+
         <netty.version>4.1.77.Final</netty.version>
         <servlet-api.version>4.0.1</servlet-api.version>
         <wire-mock.version>2.26.3</wire-mock.version>
@@ -192,6 +197,9 @@ Modifications copyright (c) 2018-2019 Nokia
 
         <micrometer.version>1.8.4</micrometer.version>
 
+        <minio.version>8.3.4</minio.version>
+        <okhttp.version>4.9.3</okhttp.version>
+
         <verbose>false</verbose>
     </properties>
 
SDC Parent Project Catalog FE and BE