Skip to content

Commit

Permalink
[7.67.x-blue] RHPAM-3709: upgrade maven dependencies to address CVE-2…
Browse files Browse the repository at this point in the history 
…021-26291 (#298)

* RHPAM-3709: upgrade maven dependencies to address CVE-2021-26291

* Remove one unneeded dependency exclusion.

---------

Co-authored-by: Alex Porcelli <alex@porcelli.me>
  • Loading branch information
@baldimir @porcelli
baldimir and porcelli authored Apr 3, 2024
1 parent e5fd44a commit b42c593
Show file tree
Hide file tree
Showing 3 changed files with 8 additions and 54 deletions.
4 changes: 0 additions & 4 deletions jbpm-workitem-itests/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -116,10 +116,6 @@
<groupId>org.hamcrest</groupId>
<artifactId>hamcrest</artifactId>
</exclusion>
<exclusion>
<groupId>org.springframework</groupId>
<artifactId>spring-jcl</artifactId>
</exclusion>
<exclusion>
<groupId>org.junit.jupiter</groupId>
<artifactId>junit-jupiter</artifactId>
Expand Down
21 changes: 8 additions & 13 deletions mavenembedder-workitem/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -59,11 +59,11 @@
<artifactId>org.eclipse.sisu.plexus</artifactId>
</exclusion>
<exclusion>
<groupId>org.sonatype.plexus</groupId>
<groupId>org.codehaus.plexus</groupId>
<artifactId>plexus-sec-dispatcher</artifactId>
</exclusion>
<exclusion>
<groupId>org.sonatype.plexus</groupId>
<groupId>org.codehaus.plexus</groupId>
<artifactId>plexus-cipher</artifactId>
</exclusion>
</exclusions>
Expand Down Expand Up @@ -114,23 +114,23 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>org.sonatype.plexus</groupId>
<groupId>org.codehaus.plexus</groupId>
<artifactId>plexus-sec-dispatcher</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
<groupId>org.sonatype.plexus</groupId>
<groupId>org.codehaus.plexus</groupId>
<artifactId>plexus-cipher</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
<groupId>org.eclipse.aether</groupId>
<artifactId>aether-connector-basic</artifactId>
<groupId>org.apache.maven.resolver</groupId>
<artifactId>maven-resolver-connector-basic</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
<groupId>org.eclipse.aether</groupId>
<artifactId>aether-transport-wagon</artifactId>
<groupId>org.apache.maven.resolver</groupId>
<artifactId>maven-resolver-transport-wagon</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand All @@ -143,11 +143,6 @@
<artifactId>wagon-provider-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
<groupId>org.apache.maven.wagon</groupId>
<artifactId>wagon-http-lightweight</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
<groupId>org.apache.commons</groupId>
<artifactId>commons-lang3</artifactId>
Expand Down
37 changes: 0 additions & 37 deletions pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -56,11 +56,9 @@
<version.rxjava>1.2.4</version.rxjava>
<version.owm>2.5.2.2</version.owm>
<version.commons.net>3.6</version.commons.net>
<version.maven.embedder>3.3.3</version.maven.embedder>
<version.wildfly.maven.plugin>1.2.1.Final</version.wildfly.maven.plugin>
<version.war.plugin>3.2.2</version.war.plugin>
<version.apache.commons.io>2.5</version.apache.commons.io>
<version.maven.model>3.3.9</version.maven.model>
<version.jslack>1.1.4</version.jslack>
<version.org.xhtmlrenderer>9.1.15</version.org.xhtmlrenderer>
<version.bouncycastle>1.67</version.bouncycastle>
Expand Down Expand Up @@ -472,41 +470,6 @@
<artifactId>commons-net</artifactId>
<version>${version.commons.net}</version>
</dependency>
<dependency>
<groupId>org.apache.maven</groupId>
<artifactId>maven-embedder</artifactId>
<version>${version.maven.embedder}</version>
</dependency>
<dependency>
<groupId>org.eclipse.aether</groupId>
<artifactId>aether-connector-basic</artifactId>
<version>${version.org.eclipse.aether}</version>
</dependency>
<dependency>
<groupId>org.eclipse.aether</groupId>
<artifactId>aether-transport-wagon</artifactId>
<version>${version.org.eclipse.aether}</version>
</dependency>
<dependency>
<groupId>org.apache.maven.wagon</groupId>
<artifactId>wagon-http</artifactId>
<version>${version.org.apache.maven.wagon}</version>
</dependency>
<dependency>
<groupId>org.apache.maven.wagon</groupId>
<artifactId>wagon-provider-api</artifactId>
<version>${version.org.apache.maven.wagon}</version>
</dependency>
<dependency>
<groupId>org.apache.maven.wagon</groupId>
<artifactId>wagon-http-lightweight</artifactId>
<version>${version.org.apache.maven.wagon}</version>
</dependency>
<dependency>
<groupId>org.apache.maven</groupId>
<artifactId>maven-model</artifactId>
<version>${version.maven.model}</version>
</dependency>
<dependency>
<groupId>com.github.taycaldwell</groupId>
<artifactId>riot-api-java</artifactId>
Expand Down

0 comments on commit b42c593

Please sign in to comment.