From 412c6b69b11edbfd462dc84a76a8c31d98ac5f54 Mon Sep 17 00:00:00 2001 From: Prudence Au Date: Sat, 10 Aug 2019 21:51:27 -0400 Subject: Fix vulnerability issue: upgrade org.apache.tomcat.embed.tomcat-embed-core to 8.5.42 remove the use of commons-codec as it's not needed and also a vulnerability and use the released version of pomba-audit-common Issue-ID: LOG-1066 Issue-ID: LOG-1067 Issue-ID: LOG-1099 Signed-off-by: Prudence Au Change-Id: Iaaedfef7c59a80dae468ff937375b09b56216d98 --- pom.xml | 16 ++++++++++++++-- 1 file changed, 14 insertions(+), 2 deletions(-) diff --git a/pom.xml b/pom.xml index aa33780..e15e84d 100644 --- a/pom.xml +++ b/pom.xml @@ -46,7 +46,7 @@ limitations under the License. org.springframework.boot spring-boot-dependencies - 1.5.17.RELEASE + 1.5.22.RELEASE pom import @@ -65,6 +65,12 @@ limitations under the License. org.springframework.boot spring-boot-starter-web + + + org.springframework.boot + spring-boot-starter-json + + org.springframework.boot @@ -129,7 +135,7 @@ limitations under the License. org.onap.logging-analytics.pomba pomba-audit-common - 1.4.0 + 1.5.0 com.google.guava @@ -163,6 +169,12 @@ limitations under the License. org.kie kie-ci ${kie.version} + + + commons-codec + commons-codec + + -- cgit 1.2.3-korg