fix whitesource vulnerability (!53) · Merge requests · OSDU Software / OSDU Data Platform / System / Storage · GitLab

Aliaksei Darafeyeu requested to merge fix_whitesource_vulnerability into master Aug 25, 2020

Versions for following libraries need to be upgraded to fix the WhiteSource scan issues:

CORE

| jackson-databind-2.9.9.jar
| hibernate-validator-6.0.17.Final.jar
| elasticsearch-6.4.3.jar
| spring-web-5.1.9.RELEASE.jar
| snakeyaml-1.23.jar
| commons-codec-1.11.jar
| tomcat-embed-core-9.0.21.jar
| netty-codec-4.1.38.Final.jar
| spring-security-core-5.1.6.RELEASE.jar

AZURE

| jackson-databind-2.9.9.jar
| hibernate-validator-6.0.17.Final.jar
| elasticsearch-6.4.3.jar
| spring-web-5.1.9.RELEASE.jar
| snakeyaml-1.23.jar
| commons-codec-1.11.jar
| tomcat-embed-core-9.0.21.jar
| netty-codec-4.1.38.Final.jar
| spring-security-core-5.1.6.RELEASE.jar | nimbus-jose-jwt-6.0.2.jar
| reactor-netty-0.9.0.RELEASE.jar

Edited Aug 26, 2020 by Nitin-slb