summaryrefslogtreecommitdiffstats
path: root/packages/apex-pdp-package-full
diff options
context:
space:
mode:
authorliamfallon <liam.fallon@est.tech>2019-09-14 12:39:25 +0100
committerliamfallon <liam.fallon@est.tech>2019-09-14 16:00:29 +0100
commit88f175903e93e138687b5fbfe5140831df5440c2 (patch)
tree7899ff0333db661f9af364f556ed53a508d2f544 /packages/apex-pdp-package-full
parent8379a2cec88ba880e0ee472c32f57217b231d348 (diff)
Disable Jython Excutor for security
The Jython interpreter pulls in many dependencies that are flagged as having security problems. We will disable Python support in apex-pdp until Frankfurt, users can compile from source if they wish to re-enable python support. Issue-ID: POLICY-1509 Change-Id: I84215ba8d1009cb7af99cd98ba19008fdff5c378 Signed-off-by: liamfallon <liam.fallon@est.tech>
Diffstat (limited to 'packages/apex-pdp-package-full')
-rw-r--r--packages/apex-pdp-package-full/pom.xml5
1 files changed, 3 insertions, 2 deletions
diff --git a/packages/apex-pdp-package-full/pom.xml b/packages/apex-pdp-package-full/pom.xml
index 064ed7ea3..2e015ba25 100644
--- a/packages/apex-pdp-package-full/pom.xml
+++ b/packages/apex-pdp-package-full/pom.xml
@@ -120,11 +120,12 @@
<artifactId>plugins-executor-jruby</artifactId>
<version>${project.version}</version>
</dependency>
- <dependency>
+ <!-- Jython support disabled due to security concerns -->
+ <!-- dependency>
<groupId>org.onap.policy.apex-pdp.plugins.plugins-executor</groupId>
<artifactId>plugins-executor-jython</artifactId>
<version>${project.version}</version>
- </dependency>
+ </dependency-->
<dependency>
<groupId>org.onap.policy.apex-pdp.plugins.plugins-executor</groupId>
<artifactId>plugins-executor-mvel</artifactId>