Skip to content

Upgrade dependencies to fix vulnerability and migrating from springfox to open-api

Ashwani Pandey requested to merge IBM-dependency-upgrade into master

Upgrade dependencies to fix vulnerability and migrating from springfox to open-api. Moving springfox to open-api version because springfox-3.0.0 version is not compatible with latest spring boot version. For reference Please see issue: osdu/platform/system/indexer-service#74 (closed)

Since spring-fox does not get updates anymore and is not compatible with new versions of spring-boot, it will block us in further dependency upgrades: https://github.com/springfox/springfox/issues/3462

Vulnerability issues fixes in this MR as below: https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/21887 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19564 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19558 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19549 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/21895 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/21893 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/21891 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19563 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19562 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19561 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19560 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19554 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19553 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19541 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19540 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19534 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19533 https://community.opengroup.org/osdu/platform/system/reference/crs-conversion-service/-/security/vulnerabilities/19530

Edited by Ashwani Pandey

Merge request reports