Remove logback 1.1.2 security issue
Replace the logback version brought brought in by tosca
datatype dependency of appc-config-params.
Change-Id: I6ebeb13676ff284fa4c56b39028d2d91cffdf37a
Signed-off-by: Patrick Brady <pb071s@att.com>
Issue-ID: APPC-1018
diff --git a/appc-config/appc-config-params/provider/pom.xml b/appc-config/appc-config-params/provider/pom.xml
index 6501465..be07d78 100644
--- a/appc-config/appc-config-params/provider/pom.xml
+++ b/appc-config/appc-config-params/provider/pom.xml
@@ -59,9 +59,17 @@
<groupId>com.datastax.cassandra</groupId>
<artifactId>cassandra-driver-core</artifactId>
</exclusion>
+ <exclusion>
+ <groupId>ch.qos.logback</groupId>
+ <artifactId>logback-classic</artifactId>
+ </exclusion>
</exclusions>
</dependency>
-
+<dependency>
+ <groupId>ch.qos.logback</groupId>
+ <artifactId>logback-classic</artifactId>
+ <version>1.2.3</version>
+ </dependency>
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
@@ -118,7 +126,7 @@
<Export-Package>org.onap.sdnc.config.params,org.onap.sdnc.config.params.data,
org.onap.sdnc.config.params.parser,org.onap.sdnc.config.params.transformer,
org.onap.sdnc.config.params.transformer.tosca,org.onap.sdnc.config.params.transformer.tosca.exceptions</Export-Package>
- <Import-Package>!com.google.common.collect,*</Import-Package>
+ <Import-Package>groovy.lang;resolution:=optional,org.codehaus.groovy.*;resolution:=optional,!com.google.common.collect,*</Import-Package>
<Embed-Dependency>guava,jackson-databind,jackson-annotations,jackson-core,jackson-dataformat-yaml,eelf-core,logback-core,logback-classic</Embed-Dependency>
<DynamicImport-Package>*</DynamicImport-Package>
</instructions>