Update esapi dependency for sec vulnerability

Signed-off-by: MichaelMorris <michael.morris@est.tech>
Issue-ID: SDC-3895
Change-Id: I457f6865f081faf9474e2f63006b339b7c1512ea

diff --git a/catalog-be/src/main/resources/ESAPI.properties b/catalog-be/src/main/resources/ESAPI.properties
index a1fcdcd..daf4261 100644 (file)
--- a/catalog-be/src/main/resources/ESAPI.properties
+++ b/catalog-be/src/main/resources/ESAPI.properties
@@ -356,6 +356,8 @@ Logger.LogServerIP=true
 Logger.LogFileName=ESAPI_logging_file
 # MaxLogFileSize, the max size (in bytes) of a single log file before it cuts over to a new one (default is 10,000,000)
 Logger.MaxLogFileSize=10000000
+Logger.UserInfo=false
+Logger.ClientInfo=false
 
 
 #===========================================================================
@@ -449,4 +451,4 @@ Validator.DirectoryName=^[a-zA-Z0-9:/\\\\!@#$%^&{}\\[\\]()_+\\-=,.~'` ]{1,255}$
 
 # Validation of dates. Controls whether or not 'lenient' dates are accepted.
 # See DataFormat.setLenient(boolean flag) for further details.
-Validator.AcceptLenientDates=false
\ No newline at end of file
+Validator.AcceptLenientDates=false

diff --git a/catalog-fe/src/main/resources/ESAPI.properties b/catalog-fe/src/main/resources/ESAPI.properties
index a1fcdcd..daf4261 100644 (file)
--- a/catalog-fe/src/main/resources/ESAPI.properties
+++ b/catalog-fe/src/main/resources/ESAPI.properties
@@ -356,6 +356,8 @@ Logger.LogServerIP=true
 Logger.LogFileName=ESAPI_logging_file
 # MaxLogFileSize, the max size (in bytes) of a single log file before it cuts over to a new one (default is 10,000,000)
 Logger.MaxLogFileSize=10000000
+Logger.UserInfo=false
+Logger.ClientInfo=false
 
 
 #===========================================================================
@@ -449,4 +451,4 @@ Validator.DirectoryName=^[a-zA-Z0-9:/\\\\!@#$%^&{}\\[\\]()_+\\-=,.~'` ]{1,255}$
 
 # Validation of dates. Controls whether or not 'lenient' dates are accepted.
 # See DataFormat.setLenient(boolean flag) for further details.
-Validator.AcceptLenientDates=false
\ No newline at end of file
+Validator.AcceptLenientDates=false

diff --git a/pom.xml b/pom.xml
index 72d407d..f736c4f 100644 (file)
--- a/pom.xml
+++ b/pom.xml
@@ -78,7 +78,7 @@ Modifications copyright (c) 2018-2019 Nokia
         <jetty-distribution.version>9.4.45.v20220203</jetty-distribution.version>
         <cxf.version>3.4.4</cxf.version>
 
-        <org.owasp.esapi.version>2.2.0.0</org.owasp.esapi.version>
+        <org.owasp.esapi.version>2.2.3.1</org.owasp.esapi.version>
         <org.dom4j.version>2.1.3</org.dom4j.version>
 
         <!-- JSON and YAML Parsing -->