Skip to content

Draft: Upgrade vulnerable dependencies

Dmitrii Gerashchenko requested to merge 6907-whitesource into master

osdu/platform/security-and-compliance/entitlements#88 (closed)

Summary

WhiteSource's vulnerabilities list contain alerts about:

  • spring-web-5.3.6.jar
  • netty-codec-4.1.63.Final.jar
  • netty-codec-4.1.63.Final.jar
  • spring-security-oauth2-client-5.4.6.jar
  • netty-all-4.1.63.Final.jar
  • netty-handler-4.1.63.Final.jar

Updated:

  • spring-boot.version from 2.4.5 to 2.4.12
  • netty-bom.version form 4.1.63.Final to 4.1.70.Final

Related MRs:

Edited by Dmitrii Gerashchenko

Merge request reports

Loading