diff options
| author |   Pamela Dragosh <pdragosh@research.att.com> | 2018-03-28 16:30:42 -0700 |
|---|---|---|
| committer | Pamela Dragosh <pdragosh@research.att.com> | 2018-03-28 17:39:37 -0700 |
| commit | a86b80ac6976a4ad25979cbfea41b9b39b3881de (patch) | |
| tree | 08aa4607baa8f4271a78bcf808305d20904d5ecc | |
| parent | b6abd7445f80d1d165877f394555f8844fe7ac63 (diff) | |
Remove security issue xstream and plexus-utils
Some of these were ommitted from compile while others
were not completely ommitted.
Upgraded maven-compiler since it upgraded plexus-utils
Upgraded latest version of jackson-databind 2.9.5
Issue-ID: POLICY-507
Change-Id: If92ff4355329c48fbe76e0245d6c8344ebb8084d
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
| -rw-r--r-- | BRMSGateway/pom.xml | 2 | ||||
| -rw-r--r-- | ONAP-SDK-APP/pom.xml | 4 | ||||
| -rw-r--r-- | POLICY-SDK-APP/pom.xml | 4 | ||||
| -rw-r--r-- | PolicyEngineUtils/pom.xml | 2 | ||||
| -rw-r--r-- | pom.xml | 2 |
5 files changed, 11 insertions, 3 deletions
diff --git a/BRMSGateway/pom.xml b/BRMSGateway/pom.xml index 18ed8f7b8..2f4612aba 100644 --- a/BRMSGateway/pom.xml +++ b/BRMSGateway/pom.xml @@ -48,7 +48,7 @@ <dependency> <groupId>org.apache.maven</groupId> <artifactId>maven-model</artifactId> - <version>3.3.9</version> + <version>3.5.3</version> </dependency> <dependency> <groupId>org.apache.maven.shared</groupId> diff --git a/ONAP-SDK-APP/pom.xml b/ONAP-SDK-APP/pom.xml index 9f383bf9a..b6e797947 100644 --- a/ONAP-SDK-APP/pom.xml +++ b/ONAP-SDK-APP/pom.xml @@ -260,6 +260,10 @@ <groupId>commons-collections</groupId> <artifactId>commons-collections</artifactId> </exclusion> + <exclusion> + <groupId>com.thoughtworks.xstream</groupId> + <artifactId>xstream</artifactId> + </exclusion> </exclusions> </dependency> <dependency> diff --git a/POLICY-SDK-APP/pom.xml b/POLICY-SDK-APP/pom.xml index 91e14d9f9..08bc3c23c 100644 --- a/POLICY-SDK-APP/pom.xml +++ b/POLICY-SDK-APP/pom.xml @@ -90,6 +90,10 @@ <groupId>mysql</groupId> <artifactId>mysql-connector-java</artifactId> </exclusion> + <exclusion> + <groupId>com.thoughtworks.xstream</groupId> + <artifactId>xstream</artifactId> + </exclusion> </exclusions> </dependency> <!-- Spring --> diff --git a/PolicyEngineUtils/pom.xml b/PolicyEngineUtils/pom.xml index 73b6e0463..85b506a21 100644 --- a/PolicyEngineUtils/pom.xml +++ b/PolicyEngineUtils/pom.xml @@ -70,7 +70,7 @@ <dependency> <groupId>org.apache.maven</groupId> <artifactId>maven-model</artifactId> - <version>3.3.9</version> + <version>3.5.3</version> </dependency> <!-- CLM security fix - force use of xstream @@ -61,7 +61,7 @@ <jetty.plugin.version>9.2.3.v20140905</jetty.plugin.version> <dmaap.version>1.1.3</dmaap.version> <httpclient.version>4.5.5</httpclient.version> - <jackson.version>2.9.4</jackson.version> + <jackson.version>2.9.5</jackson.version> <commons.fileupload.version>1.3.3</commons.fileupload.version> </properties> <modules> |