Skip to content

Commit a60d4a2

Browse files
lprimaklprimak
committed
chore: fix vulnerabilities in tests reported by OpenSSF tool
1 parent d3750f6 commit a60d4a2

File tree

7 files changed

+157
-1
lines changed

7 files changed

+157
-1
lines changed

integration-tests/meecrowave-support/pom.xml

Lines changed: 27 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -73,4 +73,31 @@
7373
</dependency>
7474
</dependencies>
7575

76+
<dependencyManagement>
77+
<dependencies>
78+
<dependency>
79+
<groupId>org.apache.cxf</groupId>
80+
<artifactId>cxf-bom</artifactId>
81+
<version>3.6.7</version>
82+
<scope>import</scope>
83+
<type>pom</type>
84+
</dependency>
85+
<dependency>
86+
<groupId>org.apache.johnzon</groupId>
87+
<artifactId>johnzon-jsonb</artifactId>
88+
<version>1.2.21</version>
89+
</dependency>
90+
<dependency>
91+
<groupId>org.apache.tomcat</groupId>
92+
<artifactId>tomcat-jaspic-api</artifactId>
93+
<version>9.0.112</version>
94+
</dependency>
95+
<dependency>
96+
<groupId>org.apache.tomcat</groupId>
97+
<artifactId>tomcat-catalina</artifactId>
98+
<version>9.0.112</version>
99+
</dependency>
100+
</dependencies>
101+
</dependencyManagement>
102+
76103
</project>

pom.xml

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1213,6 +1213,16 @@
12131213
</exclusion>
12141214
</exclusions>
12151215
</dependency>
1216+
<dependency>
1217+
<groupId>ch.qos.logback</groupId>
1218+
<artifactId>logback-core</artifactId>
1219+
<version>1.5.21</version>
1220+
</dependency>
1221+
<dependency>
1222+
<groupId>ch.qos.logback</groupId>
1223+
<artifactId>logback-classic</artifactId>
1224+
<version>1.5.21</version>
1225+
</dependency>
12161226

12171227
<dependency>
12181228
<groupId>org.apache.logging.log4j</groupId>

samples/spring-boot-3-web/pom.xml

Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -117,6 +117,31 @@
117117
<scope>import</scope>
118118
<type>pom</type>
119119
</dependency>
120+
<dependency>
121+
<groupId>org.apache.tomcat.embed</groupId>
122+
<artifactId>tomcat-embed-core</artifactId>
123+
<version>10.1.49</version>
124+
</dependency>
125+
<dependency>
126+
<groupId>org.apache.tomcat.embed</groupId>
127+
<artifactId>tomcat-embed-el</artifactId>
128+
<version>10.1.49</version>
129+
</dependency>
130+
<dependency>
131+
<groupId>org.apache.tomcat.embed</groupId>
132+
<artifactId>tomcat-embed-websocket</artifactId>
133+
<version>10.1.49</version>
134+
</dependency>
135+
<dependency>
136+
<groupId>ch.qos.logback</groupId>
137+
<artifactId>logback-classic</artifactId>
138+
<version>1.5.21</version>
139+
</dependency>
140+
<dependency>
141+
<groupId>ch.qos.logback</groupId>
142+
<artifactId>logback-core</artifactId>
143+
<version>1.5.21</version>
144+
</dependency>
120145
</dependencies>
121146
</dependencyManagement>
122147

samples/spring-boot-web/pom.xml

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -97,6 +97,22 @@
9797
</exclusion>
9898
</exclusions>
9999
</dependency>
100+
101+
<dependency>
102+
<groupId>org.apache.tomcat.embed</groupId>
103+
<artifactId>tomcat-embed-core</artifactId>
104+
<version>9.0.112</version>
105+
</dependency>
106+
<dependency>
107+
<groupId>org.apache.tomcat.embed</groupId>
108+
<artifactId>tomcat-embed-el</artifactId>
109+
<version>9.0.112</version>
110+
</dependency>
111+
<dependency>
112+
<groupId>org.apache.tomcat.embed</groupId>
113+
<artifactId>tomcat-embed-websocket</artifactId>
114+
<version>9.0.112</version>
115+
</dependency>
100116
</dependencies>
101117
</dependencyManagement>
102118

samples/web-jakarta/pom.xml

Lines changed: 38 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,7 @@
3333

3434
<properties>
3535
<meecrowave.version>1.2.15</meecrowave.version>
36-
<tomcat.version>10.1.30</tomcat.version>
36+
<tomcat.version>10.1.49</tomcat.version>
3737
<jacoco.skip>true</jacoco.skip>
3838
</properties>
3939

@@ -46,6 +46,43 @@
4646
<scope>import</scope>
4747
<type>pom</type>
4848
</dependency>
49+
<dependency>
50+
<groupId>org.apache.cxf</groupId>
51+
<artifactId>cxf-bom</artifactId>
52+
<version>3.6.7</version>
53+
<scope>import</scope>
54+
<type>pom</type>
55+
</dependency>
56+
<dependency>
57+
<groupId>org.apache.johnzon</groupId>
58+
<artifactId>johnzon-jsonb</artifactId>
59+
<version>1.2.21</version>
60+
</dependency>
61+
<dependency>
62+
<groupId>org.apache.tomcat.embed</groupId>
63+
<artifactId>tomcat-embed-core</artifactId>
64+
<version>9.0.112</version>
65+
</dependency>
66+
<dependency>
67+
<groupId>org.apache.tomcat.embed</groupId>
68+
<artifactId>tomcat-embed-el</artifactId>
69+
<version>9.0.112</version>
70+
</dependency>
71+
<dependency>
72+
<groupId>org.apache.tomcat</groupId>
73+
<artifactId>tomcat-jaspic-api</artifactId>
74+
<version>9.0.112</version>
75+
</dependency>
76+
<dependency>
77+
<groupId>org.apache.tomcat.embed</groupId>
78+
<artifactId>tomcat-embed-websocket</artifactId>
79+
<version>9.0.112</version>
80+
</dependency>
81+
<dependency>
82+
<groupId>org.apache.tomcat</groupId>
83+
<artifactId>tomcat-catalina</artifactId>
84+
<version>9.0.112</version>
85+
</dependency>
4986
</dependencies>
5087
</dependencyManagement>
5188

support/spring-boot/spring-boot-starter/pom.xml

Lines changed: 20 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -94,6 +94,26 @@
9494
</dependency>
9595
</dependencies>
9696

97+
<dependencyManagement>
98+
<dependencies>
99+
<dependency>
100+
<groupId>org.apache.tomcat.embed</groupId>
101+
<artifactId>tomcat-embed-core</artifactId>
102+
<version>9.0.112</version>
103+
</dependency>
104+
<dependency>
105+
<groupId>org.apache.tomcat.embed</groupId>
106+
<artifactId>tomcat-embed-el</artifactId>
107+
<version>9.0.112</version>
108+
</dependency>
109+
<dependency>
110+
<groupId>org.apache.tomcat.embed</groupId>
111+
<artifactId>tomcat-embed-websocket</artifactId>
112+
<version>9.0.112</version>
113+
</dependency>
114+
</dependencies>
115+
</dependencyManagement>
116+
97117
<build>
98118
<plugins>
99119
<plugin>

support/spring-boot/spring-boot-web-starter/pom.xml

Lines changed: 21 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -64,6 +64,27 @@
6464
</dependency>
6565
</dependencies>
6666

67+
68+
<dependencyManagement>
69+
<dependencies>
70+
<dependency>
71+
<groupId>org.apache.tomcat.embed</groupId>
72+
<artifactId>tomcat-embed-core</artifactId>
73+
<version>9.0.112</version>
74+
</dependency>
75+
<dependency>
76+
<groupId>org.apache.tomcat.embed</groupId>
77+
<artifactId>tomcat-embed-el</artifactId>
78+
<version>9.0.112</version>
79+
</dependency>
80+
<dependency>
81+
<groupId>org.apache.tomcat.embed</groupId>
82+
<artifactId>tomcat-embed-websocket</artifactId>
83+
<version>9.0.112</version>
84+
</dependency>
85+
</dependencies>
86+
</dependencyManagement>
87+
6788
<build>
6889
<plugins>
6990
<plugin>

0 commit comments

Comments
 (0)