From d3e074c0010cce39ed4ca0071f5a78aadc8d6496 Mon Sep 17 00:00:00 2001
From: Jim Hahn <jrh3@att.com>
Date: Tue, 30 Jun 2020 09:14:51 -0400
Subject: Fix sonar about always-trust-manager

This trust manager is not secure and should be avoided.  However,
it is only used when the configuration explicitly says to allow
self-signed certificates.  Modified the code to use an apache trust
manager, thus avoid the sonar complaint.

Issue-ID: POLICY-2650
Change-Id: Iaf4c72689916ed5ed5e6864666f3f54b2c5e0f12
Signed-off-by: Jim Hahn <jrh3@att.com>
---
 utils/pom.xml | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'utils/pom.xml')

diff --git a/utils/pom.xml b/utils/pom.xml
index 846d6871..95ea2c39 100644
--- a/utils/pom.xml
+++ b/utils/pom.xml
@@ -60,6 +60,11 @@
             <groupId>org.apache.commons</groupId>
             <artifactId>commons-lang3</artifactId>
         </dependency>
+        <dependency>
+            <groupId>commons-net</groupId>
+            <artifactId>commons-net</artifactId>
+            <version>3.6</version>
+        </dependency>
         <dependency>
             <groupId>com.google.guava</groupId>
             <artifactId>guava</artifactId>
-- 
cgit 1.2.3-korg