aboutsummaryrefslogtreecommitdiffstats
path: root/integration/pom.xml
AgeCommit message (Collapse)AuthorFilesLines
2022-10-21Set snapshot and/or references of policy/parent for new releaseliamfallon1-1/+1
policy/parent updated to its latest own and reference snapshots *** This commit is generated by a PF release script *** Issue-ID: POLICY-4408 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I1f6e293dbf65357859ec4d1f1518030d5f5aa9ab
2022-10-20Update snapshot and/or references of policy/parent to latest snapshotsliamfallon1-2/+2
policy/parent updated to its latest own and reference snapshots *** This commit is generated by a PF release script *** Issue-ID: POLICY-4408 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: Ie040f79800f5780bbdd3047290b4f86470a35e8e
2022-10-20update parent references in policy/parent pomliamfallon1-1/+1
updated the parent references in the policy/parent pom *** This commit is generated by a PF release script *** Issue-ID: POLICY-4408 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: Ia615093cb38d4fadfa70590b7811d83bd4b650f7
2022-10-20Make tag specification mandatory on release dataliamfallon1-4/+11
Also upgrades apache commons text. Issue-ID: POLICY-4045 Change-Id: Id93f9f92864403eecc198325f6f9dc8083532aab Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-10-19Fix some dependencies flagged in scansliamfallon1-1/+5
Issue-ID: POLICY-4393 Change-Id: I64504daff775ec008e936876c3aecfe6e604b9e5 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-10-17Merge "Remove some medium level vulnerabilities"Pamela Dragosh1-9/+26
2022-10-13Remove some medium level vulnerabilitiesliamfallon1-9/+26
Issue-ID: POLICY-4393 Change-Id: I062038ebb1a9182e43dca6a973abee26d4f856fc Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-10-12Upgrade blueprint-proto to 1.4.0.jhh1-1/+1
This is to cover the security vulnerability reported for com.google.protobuf : protobuf-java : 3.19.4 See drools-applications dependency that transitively picks it up: <dependency> <groupId>org.onap.ccsdk.cds.blueprintsprocessor.modules</groupId> <artifactId>blueprint-proto</artifactId> </dependency> Issue-ID: POLICY-4393 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I17f609f937cb555e1a72ab8ba1008e667f55870f
2022-10-11Manage spring-boot-starter-aopliamfallon1-0/+5
Issue-ID: POLICY-4393 Change-Id: I83a62dad43ae371d85494a1312cd0515456e26f6 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-10-11Fix builds, revert springboot to 2.5.xliamfallon1-5/+9
Fixing up the dependencies for escurity: - Springboot > 2.5.x does NOT work with Swagger 2.0 so its reverted - Jackson and Jackson databind can bow be ont he same version and the latest version works fine - Kafka client has a security issue, so upgrading to latest version Issue-ID: POLICY-4393 Change-Id: If9c68c1c3df3a426dcbb81f35ac561baf870e6fb Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-10-10Update dependencies for security vulnerabilitiesliamfallon1-4/+3
Update jackson-databind, springboot, and snakeyaml for security vulnerabilities. Issue-ID: POLICY-4393 Change-Id: Id8dffa3942f691817ffdea69cf5982f1c2e43e84 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-09-22Update snapshot and/or references of policy/parent to latest snapshotsliamfallon1-2/+2
policy/parent updated to its latest own and reference snapshots *** This commit is generated by a PF release script *** Issue-ID: POLICY-4343 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I6f785f654252b42fac673237c98c4249087d8731
2022-09-21update parent references in policy/parent pomliamfallon1-1/+1
updated the parent references in the policy/parent pom *** This commit is generated by a PF release script *** Issue-ID: POLICY-4343 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I9b5f02c534aa34c9f30ff17db0a64aa896b31efa
2022-09-16Fix minor warnings in codeliamfallon1-1/+15
Issue-ID: POLICY-4045 Change-Id: I34d596517bd84accd8916973b93d90c159460a5e Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-09-01Update logback to SECOM recommended versionliamfallon1-1/+1
Issue-ID: POLICY-4242 Change-Id: I002d86f5fc27e12c00fa94b82c8776059f645911 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-08-31Upgrade drools libraries to 7.73.0.Finaljhh1-1/+1
Issue-ID: POLICY-4335 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I6d59cbf6814c7472ad7d5e2d2537759334e16b2a
2022-08-29Update policy-parent for security fixesliamfallon1-1/+1
Dependency changes to fix security issues. The latest oparent version in Master fixes some issues. This commit pulls in the latest snapshot oparent. Let's see the extent of the fixes it does. If so, we may need to release oparent as well. Issue-ID: POLICY-4333 Change-Id: I9b829aa9a2f3538f8580b4aa874db581d6c33042 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-07-29Add Kafka versionSirisha_Manchikanti1-0/+15
Issue-ID: POLICY-4313 Signed-off-by: Sirisha_Manchikanti <sirisha.manchikanti@est.tech> Change-Id: Ia998c89eecf3486c6e65b1483f609b4e0a0df9b5
2022-07-22Adding medeia-validator-gson dependency to parenta.sreekumar1-0/+5
Change-Id: I567218f6e71866e494678db427d6e76fbc41ba23 Issue-ID: POLICY-4291 Signed-off-by: a.sreekumar <ajith.sreekumar@bell.ca>
2022-07-15Bump version of Docker Maven Pluginliamfallon1-1/+1
This version of the Docker maven plugin supports multi-architecture Docker builds. Issue-ID: POLICY-4287 Change-Id: I931e04d8e231eb7a5d84661369b4a312ef8c6bc0 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-07-12Update mariadb jdbc driver to 2.7.6jhh1-1/+1
Issue-ID: POLICY-4280 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: Ia59375bfe2af9242e244ee6f0a82da4333b04095
2022-05-03Set snapshot and/or references of policy/parent for new releaseliamfallon1-1/+1
policy/parent updated to its latest own and reference snapshots *** This commit is generated by a PF release script *** Issue-ID: POLICY-4073 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I46a34a2b01fba8557cd8465625db202837c3138d
2022-04-26Update snapshot and/or references of policy/parent to latest snapshotsliamfallon1-1/+1
policy/parent updated to its latest own and reference snapshots *** This commit is generated by a PF release script *** Issue-ID: POLICY-4089 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: Ib579ca14757048970fb7523b6eedbe7e24c49d17
2022-04-25update parent references in policy/parent pomliamfallon1-1/+1
updated the parent references in the policy/parent pom *** This commit is generated by a PF release script *** Issue-ID: POLICY-4089 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I109e55e739b49442c8d45f0e75820c0bfdec7375
2022-04-22Use released oparent, upgrade mockserver depliamfallon1-1/+1
Issue-ID: POLICY-4070 Change-Id: I7639b879745b2f8f013e47b13921938b0194c3a1 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-04-22Change dependencies for security vulnerabilitiesliamfallon1-3/+8
Issue-ID: POLICY-4070 Change-Id: I6116bcb80f338f1b8b15b4ec8a42ab54f158892a Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-04-22Merge "Update dependencies for security vulnerabilities"Ram Krishna Verma1-15/+40
2022-04-21Update dependencies for security vulnerabilitiesliamfallon1-15/+40
Use dependencies from oparent for httpcomponents add spring framework dependencies to dependency management Add github classgraph dependency Add Tomcat dependencies Issue-ID: POLICY-4070 Change-Id: I87db62c1df810feedf1ebc6efbc7808d89fecc83 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-04-21upgrade to drools 7.68.0.Finaljhh1-1/+1
this is the latest version as the time being on 4/22. it should knock out several security vulnerabilities from nexus-iq report, at least those maven related. Issue-ID: POLICY-4070 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I079a31d828cea01c0e6b5bdb0d0357cfff091a6a
2022-04-12Update snapshot and/or references of policy/parent to latest snapshotsliamfallon1-1/+1
policy/parent updated to its latest own and reference snapshots *** This commit is generated by a PF release script *** Issue-ID: POLICY-4089 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: Id55488d4a7fea6db11a1905f930b6d715ec0da80
2022-04-12update parent references in policy/parent pomliamfallon1-1/+1
updated the parent references in the policy/parent pom *** This commit is generated by a PF release script *** Issue-ID: POLICY-4089 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: Ieb2502a6ad9e9e949f2232ac463a93784712beae
2022-04-08Further security dependency changesliamfallon1-10/+109
Moving the Jackson dependencies into the managed dependency section gives us more control over Jackson Issue-ID: POLICY-4070 Change-Id: Idf6e99c3300c4f649db3bb9660d209fced7b27fb Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-04-07Update dependencies fro security vulnerabilitiesliamfallon1-3/+4
Jackson and PostgreSQL depenedencies updated, there are knock on changes in models, apex, and clamp Issue-ID: POLICY-4070 Change-Id: Ia9d399a61b34446ab3ab7d0161a24abc35836bcf Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-03-10add simpleclient_logback to dependency managementjhh1-0/+5
Issue-ID: POLICY-3984 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I6e750a621e9fa079ca45f5460ac42a0b29106830
2022-03-09Update snapshot and/or references of policy/parent to latest snapshotsliamfallon1-1/+1
policy/parent updated to its latest own and reference snapshots *** This commit is generated by a PF release script *** Issue-ID: POLICY-3982 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: Ic17a02e6435279e4b6a22550736749293e03cb63
2022-03-08update parent references in policy/parent pomliamfallon1-1/+1
updated the parent references in the policy/parent pom *** This commit is generated by a PF release script *** Issue-ID: POLICY-3982 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: If658e6906a0f9eabe3b6326fc7a969c90802f138
2022-03-01upgrade to drools 7.66.0.Final versionjhh1-2/+2
Issue-ID: POLICY-3745 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I71bd83d38ffe4029990cd344c94fa4d9e979f3f1 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2022-02-15Add hibernate core as managed dependencyRam Krishna Verma1-0/+8
Adding hibernate core as a managed dependency in policy/parent so that multiple components can inherit the common version. Issue-ID: POLICY-3931 Change-Id: Ice21aca16bc90b32890e08fd51fc672962f97164 Signed-off-by: Ram Krishna Verma <ram_krishna.verma@bell.ca>
2022-02-07Use spring boot actuator version 2.5.4a.sreekumar1-1/+2
Spring boot actuator version 2.5.4 is added so that the projects can use this. The version 2.5.0 which is currently used contains a bug where some jvm metrics are lost. Change-Id: I21c6283dc5ea93cda63bb0cc6a6425e4f5bef668 Issue-ID: POLICY-3913 Signed-off-by: a.sreekumar <ajith.sreekumar@bell.ca>
2022-01-19Add postgres dependency to integration pom.xmlwaynedunican1-0/+8
Issue-ID: POLICY-2086 Change-Id: I97828a378131f975fca339add198d943c15844c2 Signed-off-by: Wayne Dunican <wayne.dunican@est.tech>
2022-01-17Update to SECCOM recommended dependenciesliamfallon1-4/+4
SECCOM has issued a directive on which dependencies should be used, see this wiki page: https://wiki.onap.org/display/SV/Jakarta+Policy This is the policy parent review to comply with the SECCOM directive. Issue-ID: POLICY-3849 Change-Id: I1e69f84990ac6e3ca4d732db3af768a547caf952 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-01-06Update log4j version due to security vulnerabilityliamfallon1-1/+1
SECCOM has recommended going to log4j 2.17.1. Issue-ID: POLICY-3862 Change-Id: I9ce6e99db114aeef5d474219e0556727eb1b433e Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-01-05Update log4j version due to security vulnerabilityliamfallon1-2/+2
SECCOM has recommended going to log4j 2.17.1. Issue-ID: POLICY-3862 Change-Id: I804307f46de9e9f270bbc81b079f8621d1bcba0e Signed-off-by: liamfallon <liam.fallon@est.tech>
2021-12-15Revert camel version upgradeliamfallon1-1/+1
Bumping the camel version from 3.7.3 to 3.13.0 breaks the CLAMP integration tests. The version of camel was bumped due to the log4j security issue but because the new versions of the log4j libraries are now managed in the parent POM, the old versions of log4j libs used by camel will be overridden anyhow. There is no need to step the camel version. Issue-ID: POLICY-3862 Change-Id: I2f94e539a7aa4d8b91e4756a052df9bee3f725fd Signed-off-by: liamfallon <liam.fallon@est.tech>
2021-12-14Update log4j version due to security vulnerabilityliamfallon1-3/+21
This change excludes old log4j libraries and includes newer versions that are not tagged with a security vulnerability. Issue-ID: POLICY-3862 Change-Id: I92dea9bef6d207db92caa6eb0bc20f863c93b1be Signed-off-by: liamfallon <liam.fallon@est.tech>
2021-11-30Extract Prometheus Client libraries into parent POMRashmi Pujar1-1/+19
Issue-ID: POLICY-3760 Signed-off-by: Rashmi Pujar <rashmi.pujar1@bell.ca> Change-Id: I1e7c911dfbb8a9e15b6090ccc08c6be7a22e811e
2021-11-23Update snapshot of policy/parent to 3.5.1-SNAPSHOTliamfallon1-1/+1
*** This commit is generated by a PF release script *** This commit updates the snapshot of the repo to the next patch version. Issue-ID: POLICY-3827 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I02cac4f46aa69771b26de4f944d931c37e6a586a
2021-11-19Update parent resources version: 3.4.3-->3.5.0liamfallon1-1/+1
*** Release Phase 1: This commit is generated by a PF release script *** This is the first step in releasing images, it updates the release version for resources for policy parent. Issue-ID: POLICY-3827 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I40e0c53dc235c4689133e63eaea79ac48ff78bfe
2021-10-12Bump master to 3.5.0-SNAPSHOT (Jakarta)liamfallon1-1/+1
Issue-ID: POLICY-3696 Change-Id: I7b839d4678e61a78a924c88bb523063ee27d46ae Signed-off-by: liamfallon <liam.fallon@est.tech>
2021-10-12Bump policy/parent to 3.4.4-SNAPSHOTliamfallon1-1/+1
Issue-ID: POLICY-3696 Change-Id: Icd4f8eca9cacc2f0a9f70272c0ed1c29b30097dd Signed-off-by: liamfallon <liam.fallon@est.tech>