Skip to content

Commit 85ce31e

Browse files
dep updates (#725)
1 parent 5bb96f3 commit 85ce31e

File tree

2 files changed

+15
-5
lines changed

2 files changed

+15
-5
lines changed

pom.xml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@
3535

3636
<properties>
3737
<swagger-annotations.version>1.5.8</swagger-annotations.version>
38-
<jackson.version>2.13.2</jackson.version>
38+
<jackson.version>2.13.2.20220328</jackson.version>
3939
<snakeyaml.version>1.30</snakeyaml.version>
4040
<bouncycastle.version>1.70</bouncycastle.version>
4141
<jjwt.version>0.11.1</jjwt.version>
@@ -156,7 +156,7 @@
156156
<dependency>
157157
<groupId>ch.qos.logback</groupId>
158158
<artifactId>logback-classic</artifactId>
159-
<version>1.2.10</version>
159+
<version>1.2.11</version>
160160
</dependency>
161161

162162
<!-- Bouncy Castle -->
@@ -371,15 +371,15 @@
371371
<plugin>
372372
<groupId>org.codehaus.mojo</groupId>
373373
<artifactId>versions-maven-plugin</artifactId>
374-
<version>2.8.1</version>
374+
<version>2.10.0</version>
375375
<configuration>
376376
<generateBackupPoms>false</generateBackupPoms>
377377
</configuration>
378378
</plugin>
379379
<plugin>
380380
<groupId>com.github.siom79.japicmp</groupId>
381381
<artifactId>japicmp-maven-plugin</artifactId>
382-
<version>0.15.4</version>
382+
<version>0.15.7</version>
383383
<configuration>
384384
<oldVersion>
385385
<dependency>
@@ -391,7 +391,7 @@
391391
</oldVersion>
392392
<parameter>
393393
<onlyModified>true</onlyModified>
394-
<breakBuildOnBinaryIncompatibleModifications>false</breakBuildOnBinaryIncompatibleModifications> <!-- TODO: revert to true after 6.0.0 major release -->
394+
<breakBuildOnBinaryIncompatibleModifications>true</breakBuildOnBinaryIncompatibleModifications>
395395
<breakBuildBasedOnSemanticVersioning>true</breakBuildBasedOnSemanticVersioning>
396396
<postAnalysisScript>${root.dir}/src/japicmp/postAnalysisScript.groovy</postAnalysisScript>
397397
</parameter>

src/owasp/owasp-suppression.xml

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -37,6 +37,7 @@
3737
<cve>CVE-2019-16370</cve>
3838
<cve>CVE-2021-29429</cve>
3939
<cve>CVE-2021-29428</cve>
40+
<cve>CVE-2022-25364</cve>
4041
</suppress>
4142

4243
<!-- this project does not use the offending method com.google.common.io.Files.createTempDir -->
@@ -46,6 +47,15 @@
4647
<cve>CVE-2020-8908</cve>
4748
</suppress>
4849

50+
<!-- build time dependency brought in by swagger codegen -->
51+
<suppress>
52+
<notes><![CDATA[ file name: commons-cli-1.2.jar]]></notes>
53+
<cve>CVE-2021-38542</cve>
54+
<cve>CVE-2021-40110</cve>
55+
<cve>CVE-2021-40111</cve>
56+
<cve>CVE-2021-40525</cve>
57+
</suppress>
58+
4959
<!-- build time dependency (related to npm validator.js which this project does NOT use) -->
5060
<suppress>
5161
<notes><![CDATA[ file name: package.json ]]></notes>

0 commit comments

Comments
 (0)