Update third party dependencies

Updated the following dependencies based on guidance from SECCOM:

    com.fasterxml.jackson.core : jackson-databind : 2.9.8 -> 2.11.0
    org.springframework : spring-web : 4.3.22.RELEASE -> 5.2.7.RELEASE
    org.springframework : spring-webmvc : 4.3.22.RELEASE -> 5.2.7.RELEASE
    com.mchange : c3p0 : 0.9.5.3 -> 0.9.5.5

Also, updated jsp tag library from javax.servlet:jstl:1.2 to org.glassfish.web:javax.servlet.jsp.jstl:1.2.5 to remediate vulnerability.

Change-Id: I48c5bc6944eab469c120b7aae8876721b989f443
Issue-ID: CCSDK-2855
Signed-off-by: Dan Timoney <dtimoney@att.com>

1 files changed, 5 insertions, 5 deletions

diff --git a/ccsdk-app-overlay/pom.xml b/ccsdk-app-overlay/pom.xml
index 7e77cb1..4a6ec33 100644
--- a/ccsdk-app-overlay/pom.xml
+++ b/ccsdk-app-overlay/pom.xml
@@ -7,12 +7,12 @@
 	<parent>
 		<groupId>org.onap.ccsdk.dashboard</groupId>
 		<artifactId>ccsdk-app-parent</artifactId>
-		<version>1.4.0-SNAPSHOT</version>
+		<version>1.4.1-SNAPSHOT</version>
 	</parent>
 
 	<groupId>org.onap.ccsdk.dashboard</groupId>
 	<artifactId>ccsdk-app-overlay</artifactId>
-	<version>1.4.0-SNAPSHOT</version>
+	<version>1.4.1-SNAPSHOT</version>
 	<packaging>war</packaging>
 	<name>DCAE Dashboard overlay</name>
 	<description>CCSDK Dashboard web resources</description>
@@ -31,9 +31,9 @@
 			<version>3.1.0</version>
 		</dependency>
 		<dependency>
-			<groupId>javax.servlet</groupId>
-			<artifactId>jstl</artifactId>
-			<version>1.2</version>
+			<groupId>org.glassfish.web</groupId>
+			<artifactId>javax.servlet.jsp.jstl</artifactId>
+			<version>1.2.5</version>
 		</dependency>
 	</dependencies>