Skip to content

Commit

Permalink
Security vulnerabilities fix (#1294)
Browse files Browse the repository at this point in the history
* Security vulnerabilities fix

* Update ScanRequest.java
  • Loading branch information
itsKedar authored Nov 22, 2023
1 parent c00fca4 commit 50e2035
Show file tree
Hide file tree
Showing 3 changed files with 12 additions and 7 deletions.
8 changes: 5 additions & 3 deletions build-11.gradle
Original file line number Diff line number Diff line change
Expand Up @@ -64,7 +64,7 @@ configurations {
all*.exclude module: 'wss-agent-api'
}

ext['tomcat.version'] = '9.0.80'
ext['tomcat.version'] = '9.0.81'
ext['groovy.version'] = '3.0.16'
ext['logback-classic.version'] = '1.2.10'
ext['spring-core.version'] = '5.3.29'
Expand Down Expand Up @@ -96,7 +96,7 @@ dependencies {
compile ("org.apache.commons:commons-text:1.10.0")
compile ('commons-codec:commons-codec:1.13')
compile ('commons-io:commons-io:2.8.0')
compile ('org.json:json:20230227')
compile ('org.json:json:20231013')
compile('org.yaml:snakeyaml:2.1')
compile ('com.fasterxml.jackson.core:jackson-databind:2.15.2')
compile ('org.springframework.boot:spring-boot-starter-web-services'){
Expand Down Expand Up @@ -125,7 +125,9 @@ dependencies {

//implementation 'ognl:ognl:3.1.29'
compile("org.thymeleaf:thymeleaf-spring5:3.1.2.RELEASE")
compile("org.thymeleaf:thymeleaf:3.1.2.RELEASE")
compile("org.thymeleaf:thymeleaf:3.1.2.RELEASE"){
exclude group: 'ognl', module: 'ognl'
}

compile ("org.apache.httpcomponents:httpclient:4.5.13")
compile ("org.codehaus.groovy:groovy-all:3.0.16") {
Expand Down
9 changes: 6 additions & 3 deletions build.gradle
Original file line number Diff line number Diff line change
Expand Up @@ -74,7 +74,7 @@ configurations {
all*.exclude module: 'wss-agent-api'
}

ext['tomcat.version'] = '9.0.80'
ext['tomcat.version'] = '9.0.81'
ext['groovy.version'] = '3.0.16'
ext['logback-classic.version'] = '1.2.10'
ext['spring-core.version'] = '5.3.29'
Expand Down Expand Up @@ -110,7 +110,7 @@ dependencies {
compile('commons-io:commons-io:2.8.0')
compile('org.apache.commons:commons-lang3:3.12.0')
compile('org.apache.commons:commons-collections4:4.4')
compile('org.json:json:20230227')
compile('org.json:json:20231013')
compile('org.yaml:snakeyaml:2.1')
compile('com.fasterxml.jackson.core:jackson-databind:2.15.2')
compile('org.springframework.boot:spring-boot-starter-web-services'){
Expand Down Expand Up @@ -141,7 +141,10 @@ dependencies {
compile('org.codehaus.jettison:jettison:1.5.4')

compile("org.thymeleaf:thymeleaf-spring5:3.1.2.RELEASE")
compile("org.thymeleaf:thymeleaf:3.1.2.RELEASE")
compile("org.thymeleaf:thymeleaf:3.1.2.RELEASE"){
exclude group: 'ognl', module: 'ognl'
}

// implementation 'ognl:ognl:3.1.29'

compile("org.codehaus.groovy:groovy-all:3.0.16") {
Expand Down
2 changes: 1 addition & 1 deletion src/main/java/com/checkmarx/flow/dto/ScanRequest.java
Original file line number Diff line number Diff line change
Expand Up @@ -152,7 +152,7 @@ public class ScanRequest {
@Getter @Setter
private boolean sbom;

@Getter @Setter
@Getter @Setter @Builder.Default
private boolean publicScan=true;

public ScanRequest(ScanRequest other) {
Expand Down

0 comments on commit 50e2035

Please sign in to comment.