summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorliamfallon <liam.fallon@ericsson.com>2018-06-22 10:18:44 +0800
committerliamfallon <liam.fallon@ericsson.com>2018-06-26 11:39:16 +0100
commiteb4f03ccf03562161098735ab6d8d7c7414d63fc (patch)
tree3d2da39ace9d5542b14f2cbb335f93f536147080
parentc64ab628a9a861a36b25418a2f187b93efc27880 (diff)
Fix vulnerabilities in dependencies
Exclude commons-beanutils from JMS plugin Upgrade apacne ant version in XML plugin Upgrade Grizzly version in all plugins Issue-ID: POLICY-905 Change-Id: Ifa0d91bdead94be605cf5d51598ce36dd2c7b0fb Signed-off-by: liamfallon <liam.fallon@ericsson.com>
-rw-r--r--plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-jms/pom.xml4
-rw-r--r--plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-restrequestor/pom.xml5
-rw-r--r--plugins/plugins-event/plugins-event-protocol/plugins-event-protocol-xml/pom.xml9
-rw-r--r--plugins/pom.xml4
4 files changed, 20 insertions, 2 deletions
diff --git a/plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-jms/pom.xml b/plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-jms/pom.xml
index 3ad5d0b73..76143fe1b 100644
--- a/plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-jms/pom.xml
+++ b/plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-jms/pom.xml
@@ -54,6 +54,10 @@
<groupId>io.netty</groupId>
<artifactId>*</artifactId>
</exclusion>
+ <exclusion>
+ <groupId>commons-beanutils</groupId>
+ <artifactId>commons-beanutils</artifactId>
+ </exclusion>
</exclusions>
</dependency>
<dependency>
diff --git a/plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-restrequestor/pom.xml b/plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-restrequestor/pom.xml
index 8a5419334..59a35603f 100644
--- a/plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-restrequestor/pom.xml
+++ b/plugins/plugins-event/plugins-event-carrier/plugins-event-carrier-restrequestor/pom.xml
@@ -63,5 +63,10 @@
<version>${project.version}</version>
<scope>test</scope>
</dependency>
+ <dependency>
+ <groupId>org.glassfish.jersey.inject</groupId>
+ <artifactId>jersey-hk2</artifactId>
+ <version>${version.grizzly2-http}</version>
+ </dependency>
</dependencies>
</project> \ No newline at end of file
diff --git a/plugins/plugins-event/plugins-event-protocol/plugins-event-protocol-xml/pom.xml b/plugins/plugins-event/plugins-event-protocol/plugins-event-protocol-xml/pom.xml
index 0e5e57d13..a200faa49 100644
--- a/plugins/plugins-event/plugins-event-protocol/plugins-event-protocol-xml/pom.xml
+++ b/plugins/plugins-event/plugins-event-protocol/plugins-event-protocol-xml/pom.xml
@@ -44,6 +44,10 @@
<groupId>org.codehaus.plexus</groupId>
<artifactId>plexus-utils</artifactId>
</exclusion>
+ <exclusion>
+ <groupId>org.apache.ant</groupId>
+ <artifactId>ant</artifactId>
+ </exclusion>
</exclusions>
</dependency>
<dependency>
@@ -51,6 +55,11 @@
<artifactId>jaxb2-basics-runtime</artifactId>
<version>1.11.1</version>
</dependency>
+ <dependency>
+ <groupId>org.apache.ant</groupId>
+ <artifactId>ant</artifactId>
+ <version>1.10.3</version>
+ </dependency>
</dependencies>
<build>
diff --git a/plugins/pom.xml b/plugins/pom.xml
index 0cf5e8549..18892837c 100644
--- a/plugins/pom.xml
+++ b/plugins/pom.xml
@@ -36,8 +36,8 @@
<properties>
<version.hazelcast>3.8.3</version.hazelcast>
- <version.jersey.core>2.25.1</version.jersey.core>
- <version.grizzly2-http>2.25.1</version.grizzly2-http>
+ <version.jersey.core>2.27</version.jersey.core>
+ <version.grizzly2-http>2.27</version.grizzly2-http>
</properties>
<modules>