diff options
| author |   Dan Timoney <dtimoney@att.com> | 2021-08-05 10:46:18 -0400 |
|---|---|---|
| committer | Dan Timoney <dtimoney@att.com> | 2021-08-17 07:40:45 -0400 |
| commit | bc67c407c4dc21e023f56ba17e4fd1f66d0bf8a9 (patch) | |
| tree | fd4515713c78b3e86212ead89a3b55b80bcfc7ec /dependencies-bom/pom.xml | |
| parent | 2a577ea5da129f9458b51baeb6720306d28a2442 (diff) | |
Package upgrades
Upgrade third party packages to address security vulnerabilities.
Provide new parent pom for spring boot 2.5, which is not
backward compatible with spring boot 2.3
Issue-ID: CCSDK-3415
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: Iffbfffb6709aeec48c35dd604b9293fb3af34a10
Diffstat (limited to 'dependencies-bom/pom.xml')
| -rw-r--r-- | dependencies-bom/pom.xml | 38 |
1 files changed, 24 insertions, 14 deletions
diff --git a/dependencies-bom/pom.xml b/dependencies-bom/pom.xml index 86c60c39..5c1598b4 100644 --- a/dependencies-bom/pom.xml +++ b/dependencies-bom/pom.xml @@ -23,12 +23,12 @@ <dependency> <groupId>ch.qos.logback</groupId> <artifactId>logback-classic</artifactId> - <version>1.2.3</version> + <version>1.2.4</version> </dependency> <dependency> <groupId>ch.qos.logback</groupId> <artifactId>logback-core</artifactId> - <version>1.2.3</version> + <version>1.2.4</version> </dependency> <dependency> <groupId>ch.vorburger.mariaDB4j</groupId> @@ -45,7 +45,7 @@ <groupId>com.fasterxml.jackson</groupId> <artifactId>jackson-bom</artifactId> <!-- ODL Aluminum has 2.10.5 --> - <version>2.11.4</version> + <version>2.12.4</version> <type>pom</type> <scope>import</scope> </dependency> @@ -201,12 +201,12 @@ <dependency> <groupId>org.apache.httpcomponents</groupId> <artifactId>httpcore</artifactId> - <version>4.4.12</version> + <version>4.4.14</version> </dependency> <dependency> <groupId>org.apache.httpcomponents</groupId> <artifactId>httpclient</artifactId> - <version>4.5.10</version> + <version>4.5.13</version> </dependency> <dependency> <groupId>org.apache.logging.log4j</groupId> @@ -216,12 +216,12 @@ <dependency> <groupId>org.apache.logging.log4j</groupId> <artifactId>log4j-core</artifactId> - <version>2.11.2</version> + <version>2.14.1</version> </dependency> <dependency> <groupId>org.apache.tomcat</groupId> <artifactId>tomcat-jdbc</artifactId> - <version>9.0.30</version> + <version>9.0.52</version> </dependency> <dependency> <groupId>org.apache.velocity</groupId> @@ -231,7 +231,7 @@ <dependency> <groupId>org.apache.velocity</groupId> <artifactId>velocity-engine-core</artifactId> - <version>2.0</version> + <version>2.3</version> </dependency> <dependency> <groupId>org.codehaus.jackson</groupId> @@ -247,7 +247,7 @@ <groupId>org.glassfish.jersey</groupId> <artifactId>jersey-bom</artifactId> <!-- ODL has 2.27 --> - <version>2.29.1</version> + <version>2.33</version> <type>pom</type> <scope>import</scope> </dependency> @@ -303,28 +303,38 @@ <dependency> <groupId>org.slf4j</groupId> <artifactId>jcl-over-slf4j</artifactId> - <version>1.7.30</version> + <version>1.7.32</version> </dependency> <dependency> <groupId>org.slf4j</groupId> <artifactId>slf4j-api</artifactId> <!-- ODL has 1.7.29 --> - <version>1.7.30</version> + <version>1.7.32</version> </dependency> <dependency> <groupId>org.slf4j</groupId> <artifactId>slf4j-simple</artifactId> - <version>1.7.30</version> + <version>1.7.32</version> </dependency> <dependency> <groupId>org.testng</groupId> <artifactId>testng</artifactId> - <version>6.14.3</version> + <version>7.3.0</version> </dependency> <dependency> <groupId>org.apache.sshd</groupId> <artifactId>sshd-core</artifactId> - <version>1.7.0</version> + <version>2.7.0</version> + </dependency> + <dependency> + <groupId>org.apache.sshd</groupId> + <artifactId>sshd-scp</artifactId> + <version>2.7.0</version> + </dependency> + <dependency> + <groupId>org.apache.sshd</groupId> + <artifactId>sshd-sftp</artifactId> + <version>2.7.0</version> </dependency> </dependencies> </dependencyManagement> |