summaryrefslogtreecommitdiffstats
path: root/appc-config/appc-config-audit/provider/pom.xml
diff options
context:
space:
mode:
authorPatrick Brady <pb071s@att.com>2018-09-17 12:52:55 -0700
committerPatrick Brady <pb071s@att.com>2018-09-21 09:31:27 -0700
commit28da5021fad45b2c4da1bd1b7db794863e5ef7f3 (patch)
tree4f7fa810ba8a782ab24017193c6afa75dc797b86 /appc-config/appc-config-audit/provider/pom.xml
parent32780c70147bf7273f7f6a8d81de1a1efd68a92c (diff)
Remove logback 1.1.3 security issue
cdp-pal and eelf are the dependencies using logback-classic 1.1.3. Need to use exclusions option in pom file Change-Id: Id8f5817ec955e2b7b486bc0215c35541086606aa Signed-off-by: Patrick Brady <pb071s@att.com> Issue-ID: APPC-1018
Diffstat (limited to 'appc-config/appc-config-audit/provider/pom.xml')
-rw-r--r--appc-config/appc-config-audit/provider/pom.xml11
1 files changed, 11 insertions, 0 deletions
diff --git a/appc-config/appc-config-audit/provider/pom.xml b/appc-config/appc-config-audit/provider/pom.xml
index 3babf6d6f..bb6629200 100644
--- a/appc-config/appc-config-audit/provider/pom.xml
+++ b/appc-config/appc-config-audit/provider/pom.xml
@@ -74,8 +74,19 @@
<artifactId>commons-io</artifactId>
</dependency>
<dependency>
+ <groupId>ch.qos.logback</groupId>
+ <artifactId>logback-classic</artifactId>
+ <version>${logback.version}</version>
+ </dependency>
+ <dependency>
<groupId>com.att.eelf</groupId>
<artifactId>eelf-core</artifactId>
+ <exclusions>
+ <exclusion>
+ <groupId>ch.qos.logback</groupId>
+ <artifactId>logback-classic</artifactId>
+ </exclusion>
+ </exclusions>
</dependency>
<dependency>
<groupId>org.apache.commons</groupId>