Commit 9af46e34 authored by Dmitrii Gerashchenko's avatar Dmitrii Gerashchenko
Browse files

Upgrade vulnerable dependencies according to WhiteSource alerts

parent 70e51d08
Pipeline #79861 failed with stages
in 29 minutes and 54 seconds
......@@ -59,11 +59,6 @@
<artifactId>proto-google-common-protos</artifactId>
<version>1.16.0</version>
</dependency>
<dependency>
<groupId>com.google.code.gson</groupId>
<artifactId>gson</artifactId>
<version>2.8.5</version>
</dependency>
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
......
......@@ -8,7 +8,7 @@
<maven.compiler.source>1.8</maven.compiler.source>
<docker.image.prefix>opendes</docker.image.prefix>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<os-core-common.version>0.12.0</os-core-common.version>
<os-core-common.version>0.13.0-SNAPSHOT-6912-0</os-core-common.version>
<snakeyaml.version>1.26</snakeyaml.version>
<resilience4jVersion>1.7.0</resilience4jVersion>
</properties>
......
......@@ -31,13 +31,11 @@
<azure.appservice.plan />
<azure.appservice.appname />
<azure.appservice.subscription />
<osdu.corelibazure.version>0.12.0</osdu.corelibazure.version>
<osdu.oscorecommon.version>0.12.0</osdu.oscorecommon.version>
<osdu.corelibazure.version>0.13.0-SNAPSHOT-6912-0</osdu.corelibazure.version>
<osdu.legal-core.version>0.13.0-SNAPSHOT</osdu.legal-core.version>
<javax.inject.version>1</javax.inject.version>
<javax.servlet-api.version>4.0.1</javax.servlet-api.version>
<woodstox-core.version>5.3.0</woodstox-core.version>
<json-smart.version>2.4.6</json-smart.version>
</properties>
<dependencyManagement>
......@@ -54,20 +52,6 @@
</dependencyManagement>
<dependencies>
<!--
Many dependencies contain library with vulnerabilities: net.minidev:json-smart:jar:2.3
because of that we need to enforce the higher version
-->
<dependency>
<groupId>net.minidev</groupId>
<artifactId>json-smart</artifactId>
<version>${json-smart.version}</version>
</dependency>
<dependency>
<groupId>org.opengroup.osdu</groupId>
<artifactId>os-core-common</artifactId>
<version>${osdu.oscorecommon.version}</version>
</dependency>
<dependency>
<groupId>org.opengroup.osdu.legal</groupId>
<artifactId>legal-core</artifactId>
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment