Skip to content

Commit 089d008

Browse files
vnenashevvnenashev
committed
#144841: fixed dependency versions
1 parent 890f01f commit 089d008

File tree

2 files changed

+27
-5
lines changed

2 files changed

+27
-5
lines changed

pom.xml

Lines changed: 18 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -14,13 +14,13 @@
1414
<compiler.plugin.version>3.8.1</compiler.plugin.version>
1515
<assembly.plugin.version>3.1.1</assembly.plugin.version>
1616

17-
<jetty.version>9.4.56.v20240826</jetty.version>
17+
<jetty.version>9.4.57.v20241219</jetty.version>
1818

1919
<jodconverter.version>2.2.1</jodconverter.version>
2020
<startup.parameters.version>1.0-5</startup.parameters.version>
2121

22-
<slf4j.version>1.7.28</slf4j.version>
23-
<logback.version>1.2.13</logback.version>
22+
<slf4j.version>2.0.16</slf4j.version>
23+
<logback.version>1.5.16</logback.version>
2424

2525
<junit.version>4.13.1</junit.version>
2626

@@ -31,6 +31,9 @@
3131
<sonar.jacoco.reportPaths>${project.basedir}/../target/jacoco.exec</sonar.jacoco.reportPaths>
3232
<sonar.language>java</sonar.language>
3333
<sonar.java.coveragePlugin>jacoco</sonar.java.coveragePlugin>
34+
35+
<owasp.dependency-check-maven.version>12.0.0</owasp.dependency-check-maven.version>
36+
<commons.io.version>2.18.0</commons.io.version>
3437
</properties>
3538

3639
<build>
@@ -52,7 +55,17 @@
5255
<plugin>
5356
<groupId>org.owasp</groupId>
5457
<artifactId>dependency-check-maven</artifactId>
55-
<version>6.4.1</version>
58+
<version>${owasp.dependency-check-maven.version}</version>
59+
<configuration>
60+
<suppressionFile>suppressions.xml</suppressionFile>
61+
</configuration>
62+
<executions>
63+
<execution>
64+
<goals>
65+
<goal>check</goal>
66+
</goals>
67+
</execution>
68+
</executions>
5669
</plugin>
5770
</plugins>
5871
<pluginManagement>
@@ -102,7 +115,7 @@
102115
<dependency>
103116
<groupId>commons-io</groupId>
104117
<artifactId>commons-io</artifactId>
105-
<version>2.7</version>
118+
<version>${commons.io.version}</version>
106119
</dependency>
107120
<!-- [end] Fix of CVE-2021-29425 (part 2 of 2) -->
108121
<dependency>

suppressions.xml

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,9 @@
1+
<?xml version="1.0" encoding="UTF-8"?>
2+
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
3+
<suppress>
4+
<cve>CVE-2024-6763</cve>
5+
</suppress>
6+
<suppress>
7+
<cpe>cpe:/a:apache:openoffice</cpe>
8+
</suppress>
9+
</suppressions>

0 commit comments

Comments
 (0)