Upgrade dependencies to fix vulnerability and migrating from springfox to open-api (!190) · Merge requests · OSDU Software / OSDU Data Platform / System / Reference and Helper Services / CRS Catalog · GitLab

Ashwani Pandey requested to merge upgrade-dependencies into master Sep 19, 2022

Upgrade dependencies to fix vulnerability and migrating from springfox to open-api. Moving springfox to open-api version because springfox-3.0.0 version is not compatible with latest spring boot version. For reference Please see issue: osdu/platform/system/indexer-service#74 (closed)

Since spring-fox does not get updates anymore and is not compatible with new versions of spring-boot, it will block us in further dependency upgrades: https://github.com/springfox/springfox/issues/3462

Vulnerability issues fixes in this MR as below:

https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21648 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/20154 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/4466 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/17552 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/4472 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/17551 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/22047 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21285 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/17551 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/4467 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21653 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21663 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21664 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21659 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/20152 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/20155 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/20151 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/20153 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21662 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21661 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21655 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/21647 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19145 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19144 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19143 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19142 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19141 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19140 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19139 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19138 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19135 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19134 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19133 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19132 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19131 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19127 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19126 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19124 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/19122 https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/4468

Edited Sep 21, 2022 by Ashwani Pandey