fix: various vuln dependencies update (!314) · Merge requests · OSDU Software / OSDU Data Platform / Consumption Services / GeoSpatial · GitLab

Derek Zhang requested to merge cve-fix into master Nov 12, 2024

Type of change

[ x] Bug Fix
Feature

Please provide link to gitlab issue or ADR(Architecture Decision Record)

Does this introduce a change in the core logic?

[YES/NO]

Does this introduce a change in the cloud provider implementation, if so which cloud?

AWS
Azure
GCP
IBM

Does this introduce a breaking change?

[/NO]

What is the current behavior?

What is the new/expected behavior?

Have you added/updated Unit Tests and Integration Tests?

Any other useful information

commons-io https://nvd.nist.gov/vuln/detail/CVE-2024-47554 setuptools https://nvd.nist.gov/vuln/detail/CVE-2022-40897 https://nvd.nist.gov/vuln/detail/CVE-2024-6345 junit https://nvd.nist.gov/vuln/detail/CVE-2020-15250 got https://nvd.nist.gov/vuln/detail/CVE-2022-33987