Skip to content

Commit

Permalink
Fix trivy issues
Browse files Browse the repository at this point in the history
  • Loading branch information
@samleeflang
samleeflang committed Mar 14, 2024
1 parent f7f1c52 commit fcf2586
Showing 1 changed file with 8 additions and 1 deletion.
9 changes: 8 additions & 1 deletion pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
<parent>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-parent</artifactId>
<version>3.2.2</version>
<version>3.2.3</version>
<relativePath/> <!-- lookup parent from repository -->
</parent>
<groupId>eu.dissco.core</groupId>
Expand All @@ -19,6 +19,7 @@
<dwca-io.version>2.16</dwca-io.version>
<commons-beanutils.version>1.9.4</commons-beanutils.version>
<jaxb2-maven-plugin.version>3.1.0</jaxb2-maven-plugin.version>
<commons-compress.version>1.26.0</commons-compress.version>
<jakarta.activation-api.version>2.1.2</jakarta.activation-api.version>
<jakarta.xml.bind-api.version>4.0.1</jakarta.xml.bind-api.version>
<mockito-inline.version>5.2.0</mockito-inline.version>
Expand Down Expand Up @@ -93,6 +94,12 @@
<artifactId>commons-beanutils</artifactId>
<version>${commons-beanutils.version}</version>
</dependency>
<!-- Mitigating CVE-2024-25710 and CVE-2024-26308 from the gbif-commons -->
<dependency>
<groupId>org.apache.commons</groupId>
<artifactId>commons-compress</artifactId>
<version>${commons-compress.version}</version>
</dependency>
<dependency>
<groupId>org.codehaus.mojo</groupId>
<artifactId>jaxb2-maven-plugin</artifactId>
Expand Down

0 comments on commit fcf2586

Please sign in to comment.