Remove logback 1.1.3 security issue
cdp-pal and eelf are the dependencies using logback-classic
1.1.3. Need to use exclusions option in pom file
Change-Id: Id8f5817ec955e2b7b486bc0215c35541086606aa
Signed-off-by: Patrick Brady <pb071s@att.com>
Issue-ID: APPC-1018
diff --git a/appc-adapters/appc-rest-adapter/appc-rest-adapter-bundle/pom.xml b/appc-adapters/appc-rest-adapter/appc-rest-adapter-bundle/pom.xml
index b67b3bd..8c666b6 100644
--- a/appc-adapters/appc-rest-adapter/appc-rest-adapter-bundle/pom.xml
+++ b/appc-adapters/appc-rest-adapter/appc-rest-adapter-bundle/pom.xml
@@ -66,6 +66,12 @@
<artifactId>cdp-pal-common</artifactId>
<scope>compile</scope>
<version>${cdp.pal.version}</version>
+ <exclusions>
+ <exclusion>
+ <groupId>ch.qos.logback</groupId>
+ <artifactId>logback-classic</artifactId>
+ </exclusion>
+ </exclusions>
</dependency>
<dependency>
@@ -73,6 +79,12 @@
<artifactId>cdp-pal-openstack</artifactId>
<scope>compile</scope>
<version>${cdp.pal.version}</version>
+ <exclusions>
+ <exclusion>
+ <groupId>com.att.cdp</groupId>
+ <artifactId>cdp-pal-common</artifactId>
+ </exclusion>
+ </exclusions>
</dependency>
<dependency>