From e7137ad14a72c9eb837626c0437d109d85c70147 Mon Sep 17 00:00:00 2001 From: Kalaiyarasiganeshalingam Date: Mon, 2 Oct 2023 11:34:39 +0530 Subject: [PATCH] Add quartz vulnerability to the ignore list --- .trivyignore | 3 +++ gradle/javaLibsProject.gradle | 1 + gradle/javaProject.gradle | 3 ++- 3 files changed, 6 insertions(+), 1 deletion(-) diff --git a/.trivyignore b/.trivyignore index 4c7ea714a5a1..9782d78b7c98 100644 --- a/.trivyignore +++ b/.trivyignore @@ -7,3 +7,6 @@ GMS-2022-7 # com.github.docker-java:docker-java:3.1.5 CVE-2020-13956 + +# quartz:2.3.2 +CVE-2023-39017 diff --git a/gradle/javaLibsProject.gradle b/gradle/javaLibsProject.gradle index 622be3a0747c..0c4085f1d5c2 100644 --- a/gradle/javaLibsProject.gradle +++ b/gradle/javaLibsProject.gradle @@ -35,6 +35,7 @@ dependencies { dist 'org.jvnet.mimepull:mimepull:1.9.7' dist 'jakarta.activation:jakarta.activation-api:1.2.2' dist 'org.wso2.carbon:org.wso2.carbon.core:5.1.0' + dist 'org.quartz-scheduler:quartz:2.3.2' dist 'org.wso2.securevault:org.wso2.securevault:1.0.0-wso2v2' dist 'org.wso2.transport.file:org.wso2.transport.local-file-system:6.0.55' dist 'org.wso2.transport.http:org.wso2.transport.http.netty:6.3.46' diff --git a/gradle/javaProject.gradle b/gradle/javaProject.gradle index fafb21a5840f..0735bbc2de0b 100644 --- a/gradle/javaProject.gradle +++ b/gradle/javaProject.gradle @@ -101,7 +101,8 @@ dependencies { implementation 'org.wso2.transport.http:org.wso2.transport.http.netty:6.3.46' implementation 'org.wso2.transport.file:org.wso2.transport.local-file-system:6.0.55' implementation 'org.wso2.staxon:staxon-core:1.2.0.wso2v2' - + implementation 'org.quartz-scheduler:quartz:2.3.2' + implementation 'info.picocli:picocli:4.0.1' implementation 'io.ballerina.messaging:broker-common:0.970.5' implementation 'io.ballerina.messaging:broker-core:0.970.5'