fix: tomcat and security cve

(cherry picked from commit 705fd82f)

fix: tomcat and security cve
e1f1d0a6 · Derek Zhang · Marc Burnie [AWS] · 80c602e8 · e1f1d0a6
Commit e1f1d0a6 authored 1 month ago by Derek Zhang Committed by Marc Burnie [AWS] 1 month ago
--- a/provider/gcz-transformer-aws/pom.xml
+++ b/provider/gcz-transformer-aws/pom.xml
@@ -109,6 +109,7 @@
        <dependency>
            <groupId>org.apache.tomcat.embed</groupId>
            <artifactId>tomcat-embed-core</artifactId>
+            <version>10.1.35</version>
        </dependency>

        <dependency>
@@ -117,6 +118,19 @@
            <version>4.1.115.Final</version>
        </dependency>

+        <dependency>
+            <groupId>net.minidev</groupId>
+            <artifactId>json-smart</artifactId>
+            <version>2.5.2</version>
+        </dependency>
+
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-crypto</artifactId>
+            <version>6.3.8</version>
+        </dependency>
+
+
    </dependencies>

    <build>