diff options
author | Thomas <> | 2022-10-20 15:20:03 +0200 |
---|---|---|
committer | Thomas <> | 2022-10-20 15:20:03 +0200 |
commit | 8c09e7fbee0f8e1bc5e1c6e89e2aaf6fa4bec7a5 (patch) | |
tree | 0c1a29716357b438eeb39cdc516b3167b73d1f62 | |
parent | a59cc4920dd182f258ef7d431d5549ede1ef6033 (diff) | |
download | National_eIDAS_Gateway-8c09e7fbee0f8e1bc5e1c6e89e2aaf6fa4bec7a5.tar.gz National_eIDAS_Gateway-8c09e7fbee0f8e1bc5e1c6e89e2aaf6fa4bec7a5.tar.bz2 National_eIDAS_Gateway-8c09e7fbee0f8e1bc5e1c6e89e2aaf6fa4bec7a5.zip |
chore(core): update third-party libs
include commons-text-1.10.0 to fix CVE-2022-42889
-rw-r--r-- | pom.xml | 13 |
1 files changed, 7 insertions, 6 deletions
@@ -25,30 +25,31 @@ <!-- ===================================================================== --> <egiz-spring-api>0.3</egiz-spring-api> <egiz-eventlog-slf4jBackend>0.4</egiz-eventlog-slf4jBackend> - <eaaf-core.version>1.3.4</eaaf-core.version> + <eaaf-core.version>1.3.7</eaaf-core.version> <spring-boot-starter-web.version>2.5.14</spring-boot-starter-web.version> <spring-boot-admin-starter-client.version>2.7.4</spring-boot-admin-starter-client.version> <org.springframework.version>5.3.23</org.springframework.version> <org.thymeleaf-spring5.version>3.0.15.RELEASE</org.thymeleaf-spring5.version> - <apache.cxf.version>3.5.3</apache.cxf.version> + <apache.cxf.version>3.5.4</apache.cxf.version> <eidas-ref.version>2.6.0</eidas-ref.version> <org.apache.commons-lang3.version>3.12.0</org.apache.commons-lang3.version> - <org.apache.commons-text.version>1.9</org.apache.commons-text.version> + <org.apache.commons-text.version>1.10.0</org.apache.commons-text.version> <commons-collections4.version>4.4</commons-collections4.version> <commons-io.version>2.11.0</commons-io.version> <com.google.guava.version>31.1-jre</com.google.guava.version> <joda-time.version>2.11.2</joda-time.version> <jackson.version>2.13.4</jackson.version> + <jackson-databind>2.13.4.2</jackson-databind> <jackson-datatype-jsr310.version>2.13.4</jackson-datatype-jsr310.version> <jackson-databind-nullable.version>0.2.3</jackson-databind-nullable.version> <swagger-parser.version>2.1.3</swagger-parser.version> <org.slf4j.version>1.7.36</org.slf4j.version> - <log4j.version>2.18.0</log4j.version> + <log4j.version>2.19.0</log4j.version> <ch.qos.logback.version>1.2.11</ch.qos.logback.version> <!-- for code generation --> @@ -88,7 +89,7 @@ <!-- Build and assembly --> - <org.projectlombok.lombok.version>1.18.20</org.projectlombok.lombok.version> + <org.projectlombok.lombok.version>1.18.24</org.projectlombok.lombok.version> <maven-compiler-plugin.version>3.8.1</maven-compiler-plugin.version> <versions-maven-plugin.version>2.8.1</versions-maven-plugin.version> <license-maven-plugin>1.20</license-maven-plugin> @@ -420,7 +421,7 @@ <dependency> <groupId>com.fasterxml.jackson.core</groupId> <artifactId>jackson-databind</artifactId> - <version>${jackson.version}</version> + <version>${jackson-databind}</version> </dependency> <dependency> <groupId>com.fasterxml.jackson.datatype</groupId> |