From bb2b66d7d06bfd1b50c96c905141eff6d7dceec6 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 16 Jul 2024 15:33:45 +0000
Subject: [PATCH 1/6] fix: kernel/kernel-config-server/Dockerfile-no-updates to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-NGHTTP2-5953384
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-2936229
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-3065656

Signed-off-by: rajapandi.m <rajapandi.m@technoforte.co.in>
---
 kernel/kernel-config-server/Dockerfile-no-updates | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-config-server/Dockerfile-no-updates b/kernel/kernel-config-server/Dockerfile-no-updates
index 2f2b8cb3adb..b4afad4b93a 100644
--- a/kernel/kernel-config-server/Dockerfile-no-updates
+++ b/kernel/kernel-config-server/Dockerfile-no-updates
@@ -1,4 +1,4 @@
-FROM openjdk:11
+FROM openjdk:17.0.2
 
 # can be passed during Docker build as build time environment for  keystore location for encryption
 ARG encrypt_keyStore_location

From 2ca19e40d90d064642bc0d23ea3f3170e4d8f977 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 16 Jul 2024 15:34:58 +0000
Subject: [PATCH 2/6] fix: kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
 to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-NGHTTP2-5953384
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-5955037
- https://snyk.io/vuln/SNYK-DEBIAN11-GIT-3232722

Signed-off-by: rajapandi.m <rajapandi.m@technoforte.co.in>
---
 kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD b/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
index c44f9029666..b2232657f8d 100644
--- a/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
+++ b/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
@@ -1,4 +1,4 @@
-FROM openjdk:11
+FROM openjdk:17.0.2
 
 # can be passed during Docker build as build time environment for github branch to pickup configuration from.
 ARG spring_config_label

From eea4c5524ee4e210f06ac1770b5070c091642df0 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 16 Jul 2024 15:36:20 +0000
Subject: [PATCH 3/6] fix: kernel/kernel-config-server/Dockerfile-no-updates to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ORACLE8-GLIBC-5935529
- https://snyk.io/vuln/SNYK-ORACLE8-GLIBCCOMMON-5935226
- https://snyk.io/vuln/SNYK-ORACLE8-GLIBCMINIMALLANGPACK-5935235
- https://snyk.io/vuln/SNYK-ORACLE8-LIBNGHTTP2-6016069
- https://snyk.io/vuln/SNYK-ORACLE8-SYSTEMDLIBS-5798196

Signed-off-by: rajapandi.m <rajapandi.m@technoforte.co.in>
---
 kernel/kernel-config-server/Dockerfile-no-updates | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-config-server/Dockerfile-no-updates b/kernel/kernel-config-server/Dockerfile-no-updates
index b4afad4b93a..26344ae990f 100644
--- a/kernel/kernel-config-server/Dockerfile-no-updates
+++ b/kernel/kernel-config-server/Dockerfile-no-updates
@@ -1,4 +1,4 @@
-FROM openjdk:17.0.2
+FROM openjdk:23-ea-30-jdk-oraclelinux8
 
 # can be passed during Docker build as build time environment for  keystore location for encryption
 ARG encrypt_keyStore_location

From 012edf9d5fdcf3bd27d061f376c1b2aacd3ad9c8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 16 Jul 2024 15:37:35 +0000
Subject: [PATCH 4/6] fix: kernel/kernel-bom/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-32236
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-1015415
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356

Signed-off-by: rajapandi.m <rajapandi.m@technoforte.co.in>
---
 kernel/kernel-bom/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-bom/pom.xml b/kernel/kernel-bom/pom.xml
index 73b28bf0bed..d2108dff524 100644
--- a/kernel/kernel-bom/pom.xml
+++ b/kernel/kernel-bom/pom.xml
@@ -53,7 +53,7 @@
 		<modelmapper.version>2.1.1</modelmapper.version>
 		<springdoc.version>1.7.0</springdoc.version>
 		
-		<guava.version>19.0</guava.version>
+		<guava.version>32.0.0-android</guava.version>
 		
 		<swagger.core.version>2.0.7</swagger.core.version>
 

From 382c4526486c2e41c57ec449020c53bf338b754e Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 16 Jul 2024 15:39:48 +0000
Subject: [PATCH 5/6] fix: kernel/kernel-authcodeflowproxy-api/pom.xml to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6435950
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-541187
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-6247635
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-467268
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-568163
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356

Signed-off-by: rajapandi.m <rajapandi.m@technoforte.co.in>
---
 kernel/kernel-authcodeflowproxy-api/pom.xml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/kernel/kernel-authcodeflowproxy-api/pom.xml b/kernel/kernel-authcodeflowproxy-api/pom.xml
index 4df33864e26..f897ac2c889 100644
--- a/kernel/kernel-authcodeflowproxy-api/pom.xml
+++ b/kernel/kernel-authcodeflowproxy-api/pom.xml
@@ -26,7 +26,7 @@
 		<maven-shade-plugin.version>2.3</maven-shade-plugin.version>
 
 		<!-- spring -->
-		<spring.boot.version>2.0.2.RELEASE</spring.boot.version>
+		<spring.boot.version>3.1.9</spring.boot.version>
 		<spring.data.jpa.version>2.0.7.RELEASE</spring.data.jpa.version>
 		<spring.security.test.version>5.0.5.RELEASE</spring.security.test.version>
 		<spring-cloud-config.version>2.0.4.RELEASE</spring-cloud-config.version>
@@ -131,7 +131,7 @@
 		<maven-shade-plugin.version>2.3</maven-shade-plugin.version>
 
 		<!-- spring -->
-		<spring.boot.version>2.0.2.RELEASE</spring.boot.version>
+		<spring.boot.version>3.1.9</spring.boot.version>
 		<spring.data.jpa.version>2.0.7.RELEASE</spring.data.jpa.version>
 		<spring.security.test.version>5.0.5.RELEASE</spring.security.test.version>
 		<spring-cloud-config.version>2.0.4.RELEASE</spring-cloud-config.version>
@@ -238,7 +238,7 @@
 		<dependency>
 			<groupId>com.auth0</groupId>
 			<artifactId>jwks-rsa</artifactId>
-			<version>0.18.0</version>
+			<version>0.22.1</version>
 		</dependency>
 		<dependency>
 			<groupId>org.powermock</groupId>

From 3e51cf480895931b725fb3119a6af6fc4cddf015 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 16 Jul 2024 15:41:24 +0000
Subject: [PATCH 6/6] fix: kernel/kernel-bom/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGJSON-5488379
- https://snyk.io/vuln/SNYK-JAVA-ORGJSON-5962464

Signed-off-by: rajapandi.m <rajapandi.m@technoforte.co.in>
---
 kernel/kernel-bom/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-bom/pom.xml b/kernel/kernel-bom/pom.xml
index d2108dff524..565de359e41 100644
--- a/kernel/kernel-bom/pom.xml
+++ b/kernel/kernel-bom/pom.xml
@@ -46,7 +46,7 @@
 				
 		<powermock.version>2.0.9</powermock.version>
 		
-		<json.version>20180813</json.version>
+		<json.version>20231013</json.version>
 		<json-simple-version>1.1.1</json-simple-version>
 		<io.jsonwebtoken.jjwt.version>0.6.0</io.jsonwebtoken.jjwt.version>
 		<commons-collections.version>3.2.2</commons-collections.version>