From 03f068ac1c511d36ff0f5128289a715e563808d0 Mon Sep 17 00:00:00 2001 From: ChrisC Date: Tue, 4 May 2021 10:08:00 +0200 Subject: Update vulnerable package dependencies Update distribution-client version to 1.4.3 Update some packages dependencies to latest version Fix conflicting dependencies using exclusions Issue-ID: SDC-3572 Signed-off-by: ChrisC Change-Id: I76d110e70191c70c7aeba6513e839566f9b3992b --- pom.xml | 4 +-- sdc-distribution-ci/pom.xml | 77 ++++++++++++++++++++++++++++++++++++++++- sdc-distribution-client/pom.xml | 44 +++++++++++++++++++++-- version.properties | 2 +- 4 files changed, 121 insertions(+), 6 deletions(-) diff --git a/pom.xml b/pom.xml index 03f3a9a..1a127bd 100644 --- a/pom.xml +++ b/pom.xml @@ -4,7 +4,7 @@ org.onap.sdc.sdc-distribution-client sdc-main-distribution-client - 1.4.2-SNAPSHOT + 1.4.3-SNAPSHOT pom sdc-sdc-distribution-client @@ -39,7 +39,7 @@ 4.4.14 1.2.3 5.7.0 - 1.27 + 1.28 30.0-jre 9.4.35.v20201120 0.12 diff --git a/sdc-distribution-ci/pom.xml b/sdc-distribution-ci/pom.xml index 9af54ca..3562ba8 100644 --- a/sdc-distribution-ci/pom.xml +++ b/sdc-distribution-ci/pom.xml @@ -6,7 +6,7 @@ org.onap.sdc.sdc-distribution-client sdc-main-distribution-client - 1.4.2-SNAPSHOT + 1.4.3-SNAPSHOT sdc-distribution-ci @@ -34,12 +34,32 @@ sdc-distribution-client ${project.version} compile + + + httpcore + org.apache.httpcomponents + + + slf4j-api + org.slf4j + + + httpclient + org.apache.httpcomponents + + ch.qos.logback logback-classic ${logback.version} compile + + + slf4j-api + org.slf4j + + org.slf4j @@ -64,24 +84,52 @@ junit-jupiter-params ${junit-jupiter-params.version} test + + + junit-jupiter-api + org.junit.jupiter + + org.junit.jupiter junit-jupiter-engine ${junit-jupiter-engine.version} test + + + junit-jupiter-api + org.junit.jupiter + + org.testcontainers testcontainers ${testcontainers.version} test + + + slf4j-api + org.slf4j + + + visible-assertions + org.rnorth.visible-assertions + + org.testcontainers junit-jupiter ${junit-jupiter.version} test + + + junit-jupiter-api + org.junit.jupiter + + org.mockito @@ -100,18 +148,45 @@ mockito-junit-jupiter ${mockito-junit-jupiter.version} test + + + junit-jupiter-api + org.junit.jupiter + + + mockito-core + org.mockito + + org.awaitility awaitility ${awaitility.version} test + + + objenesis + org.objenesis + + org.awaitility awaitility-proxy ${awaitility-proxy.version} test + + + byte-buddy + net.bytebuddy + + + + + org.apache.httpcomponents + httpclient + ${httpclient.version} diff --git a/sdc-distribution-client/pom.xml b/sdc-distribution-client/pom.xml index a7f8bf9..e073a5e 100644 --- a/sdc-distribution-client/pom.xml +++ b/sdc-distribution-client/pom.xml @@ -15,11 +15,11 @@ org.onap.sdc.sdc-distribution-client sdc-main-distribution-client - 1.4.2-SNAPSHOT + 1.4.3-SNAPSHOT sdc-distribution-client - sdc-sdc-distribution-client + sdc-distribution-client Distribution client JAR file to use by consumers jar @@ -36,6 +36,18 @@ org.slf4j slf4j-log4j12 + + org.apache.httpcomponents + httpclient + + + slf4j-api + org.slf4j + + + commons-io + commons-io + @@ -81,6 +93,10 @@ commons-codec commons-codec + + httpcore + org.apache.httpcomponents + compile @@ -90,6 +106,12 @@ httpmime ${httpclient.version} compile + + + httpclient + org.apache.httpcomponents + + @@ -119,6 +141,12 @@ org.eclipse.jetty jetty-servlet test + + + jetty-util + org.eclipse.jetty + + ${jetty.version} @@ -127,6 +155,12 @@ jetty-webapp ${jetty.version} test + + + jetty-servlet + org.eclipse.jetty + + @@ -154,6 +188,12 @@ bean-matchers ${bean-matchers.version} test + + + mockito-core + org.mockito + + diff --git a/version.properties b/version.properties index 0d94dfd..a54766f 100644 --- a/version.properties +++ b/version.properties @@ -5,7 +5,7 @@ major=1 minor=4 -patch=2 +patch=3 base_version=${major}.${minor}.${patch} -- cgit 1.2.3-korg