remediate azure critical vulnerabilities (!695) · Merge requests · OSDU Software / OSDU Data Platform / Security and Compliance / Entitlements · GitLab

VidyaDharani Lokam requested to merge az/vl-fix-azure-critical-vul into master May 14, 2024

issue reference: https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/issues/172

upgrade commons-configuration2 to 2.10.1
remove unused plugin in dependency section cobertura-maven-plugin to remediate transitive vulnerable dependencies(maven-core, xercesImpl, jdom, apache.velocity)

Edited May 14, 2024 by VidyaDharani Lokam