Age | Commit message (Collapse) | Author | Files | Lines |
|
org.springframework.boot.* 3.0.3 -> 3.0.6
CVE-2023-28867
CVE-2023-20873
CVE-2023-1370
CVE-2022-4492
org.springframework.* 6.0.4 -> 6.0.8
CVE-2023-20863
CVE-2023-20861
ch.qos.logback.* 1.4.5 -> 1.4.7
Issue-ID: CCSDK-3841
Change-Id: I857c4f60977c31271c85da3a933c7cb12ed125bd
Signed-off-by: JohnKeeney <john.keeney@est.tech>
|
|
Changes in earlier commit were made directly to a generated pom file
and thus were lost at compile time. This change makes the changes
to the template and properties files used to generate that pom
Issue-ID: CCSDK-3813
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: Ieb3bacfe29d7834bdc049023a2beefbf39d87ab1
|
|
Issue-ID: CCSDK-3813
Change-Id: If23fa807187520ae62091fc2e4156d25b71e8ff3
Signed-off-by: JohnKeeney <john.keeney@est.tech>
|
|
jackson-bom -> 2.13.4.2 (via spring-boot-starter:jar:2.6.11) to address CVE-2020-36518 & CVE-2022-42003 & CVE-2022-42004
log4j -> 2.17.2
Issue-ID: CCSDK-3618
Change-Id: Ic1660b18ebc2f9519bcbd5f767a0f22d2a1dd0db
Signed-off-by: JohnKeeney <john.keeney@est.tech>
|
|
Change-Id: I409979c2bdd7e2e5a36b036be1c04a30116367e9
Signed-off-by: JohnKeeney <john.keeney@est.tech>
Issue-ID: CCSDK-3618
|
|
Update versions to address issues in local Sulfur testing
Issue-ID: CCSDK-3691
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: I886ec094c589cc2888a05e7e9d30f99748d27209
|
|
Update springboot 2.6.6 -> 2.6.8
Update spring version 5.3.16 -> 5.3.18
Addresses CVE-2022-24823
Issue-ID: CCSDK-3581
Change-Id: I1546a5f812aacd5843a85fa48f5718ad0901b15b
Signed-off-by: JohnKeeney <john.keeney@est.tech>
|
|
Issue-ID: CCSDK-3629
Signed-off-by: Singal, Kapil (ks220y) <ks220y@att.com>
Change-Id: I0d0bb47e55a1f27131795e609e38c0952e763856
|
|
To address Security Issue CVE-2022-22965
https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement
Change-Id: Id719b9dc33d774b0d6516cc63ab7830d45deb27a
Signed-off-by: JohnKeeney <john.keeney@est.tech>
Issue-ID: CCSDK-3629
|
|
Update dependencies for springboot 2.5.10
Issue-ID: CCSDK-3585
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: Iaef2b462dcc687d6e8b4b44ba33f278f4eccd3a1
|
|
Upgrade third party packages to address security vulnerabilities.
Provide new parent pom for spring boot 2.5, which is not
backward compatible with spring boot 2.3
Issue-ID: CCSDK-3415
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: Iffbfffb6709aeec48c35dd604b9293fb3af34a10
|
|
Update to latest version of spring boot 2.3
Issue-ID: CCSDK-3291
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: Ie475c749fa9e8b58cae2aadbde0e8e9b40790f4d
|
|
Upgrade to 2.3.8.RELEASE to fix the security vulnerabilities.
Change-Id: I40c2702aca612f265cb4928f392ec4ec4f223aea
Issue-ID: CCSDK-3108
Signed-off-by: RehanRaza <muhammad.rehan.raza@est.tech>
|
|
Added missing dependencies needed in oparent and dependencies-bom
to allow oparent pom to be used in ccsdk/sli for code not
directly dependent on OpenDaylight. Also, updated to latest
springboot release and to latest released version of ONAP oparent
pom. Note: this change does NOT address changes to compile jars as
java 11. That change will come with the changes for ODL Aluminum.
Change-Id: I599bae0c32f5ced7eada956a0ed3b57f40461cd5
Issue-ID: CCSDK-3001
Signed-off-by: Dan Timoney <dtimoney@att.com>
|
|
Upgrade to latest springboot release (2.3.3.RELEASE)
Change-Id: I2aabcc0f258912f79ea6334ebec0ab342a2b066f
Issue-ID: CCSDK-2633
Signed-off-by: Dan Timoney <dtimoney@att.com>
|
|
1) dependency-odl-bom is being imported to other parent poms, removing / cleaning up duplicate dependencies
2) Adding spring-boot-setup pom and related templates for spring-boot parent poms
3) Adding jetty-server to dependency-odl-bom
4) Adding org.onap.logging-analytics dependency to spring-boot-parent poms
Issue-ID: CCSDK-2107
Signed-off-by: Singal, Kapil (ks220y) <ks220y@att.com>
Change-Id: I3a844cd736044a4ffbca7688bca110c0bc7dab0c
|