Skip to content

Commit

Permalink
Fix CVE
Browse files Browse the repository at this point in the history 
[LOW] com.google.guava:guava@21.0: SNYK-JAVA-COMGOOGLEGUAVA-1015415 CWE-200 [Fixed in: 30.0-android, 30.0-jre].

[LOW] com.google.guava:guava@21.0: SNYK-JAVA-COMGOOGLEGUAVA-5710356 CWE-379 [Fixed in: 32.0.0-android, 32.0.0-jre].

[LOW] com.google.guava:guava@31.0.1-jre: SNYK-JAVA-COMGOOGLEGUAVA-5710356 CWE-379 [Fixed in: 32.0.0-android, 32.0.0-jre].

[HIGH] io.airlift:aircompressor@0.20: SNYK-JAVA-IOAIRLIFT-7164637 CWE-125 [Fixed in: 0.27].

[HIGH] org.geotools:gt-main@25.7: SNYK-JAVA-ORGGEOTOOLS-3329308 CWE-89 [Fixed in: 27.5, 28.3].

[MEDIUM] org.springframework:spring-expression@5.3.37: SNYK-JAVA-ORGSPRINGFRAMEWORK-7687446 CWE-770 [Fixed in: 5.3.39].

[MEDIUM] org.springframework:spring-web@5.3.37: SNYK-JAVA-ORGSPRINGFRAMEWORK-7687447 CWE-400 [Fixed in: 5.3.38, 6.0.23, 6.1.12].

[MEDIUM] org.testng:testng@7.5: SNYK-JAVA-ORGTESTNG-3040285 CWE-29 [Fixed in: 7.5.1, 7.7.0].
  • Loading branch information
@sbrunner
sbrunner committed Aug 29, 2024
1 parent aaa0044 commit a272c85
Showing 1 changed file with 6 additions and 4 deletions.
10 changes: 6 additions & 4 deletions core/build.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -114,13 +114,13 @@ configurations {
}

ext {
springVersion = '5.3.37'
springVersion = '5.3.39'
}

dependencies {
def slf4jVersion = '1.7.36'
def metricsVersion = '4.2.26'
def geotoolsVersion = '25.7'
def geotoolsVersion = '27.5'
def logbackVersion = '1.4.14'

compile(
Expand All @@ -142,7 +142,9 @@ dependencies {
// Indirect dependencies
'org.apache.commons:commons-text:1.10.0',
'org.hsqldb:hsqldb:2.7.3',
'com.fasterxml.jackson.core:jackson-databind:2.13.5'
'com.fasterxml.jackson.core:jackson-databind:2.13.5',
'io.airlift:aircompressor:0.27',
'org.testng:testng:7.5.1',
)
metrics(
"io.dropwizard.metrics:metrics-core:$metricsVersion",
Expand Down Expand Up @@ -173,7 +175,7 @@ dependencies {
)
compile fileTree(dir: "$projectDir/libs", include: '*.jar')
compile(
'com.google.guava:guava:31.0.1-jre',
'com.google.guava:guava:32.0.0-jre',
"org.slf4j:slf4j-api:${slf4jVersion}",
"org.slf4j:jcl-over-slf4j:${slf4jVersion}",
"org.slf4j:jul-to-slf4j:${slf4jVersion}",
Expand Down

0 comments on commit a272c85

Please sign in to comment.