Gitiles
Code Review Sign In
gerrit.nordix.org / onap / ccsdk / parent / beb755a8d34aa876ce8bb6f3c9f1dbfa0d711367
commitbeb755a8d34aa876ce8bb6f3c9f1dbfa0d711367[log] [tgz]
authorJohnKeeney <john.keeney@est.tech>Tue Jun 13 17:38:49 2023 +0100
committerJohnKeeney <john.keeney@est.tech>Tue Jun 13 20:11:29 2023 +0100
tree1b2c52987cce1096716e1475c476326a94295ca3
parent7b646d6e462e3c4ea19c6c710ca1364cc484b0f1 [diff]
Spring parent: Update dependecies to address vulnerabilities

org.springframework.boot.* 3.0.3 -> 3.0.6
  CVE-2023-28867
  CVE-2023-20873
  CVE-2023-1370
  CVE-2022-4492

org.springframework.* 6.0.4 -> 6.0.8
  CVE-2023-20863
  CVE-2023-20861

ch.qos.logback.* 1.4.5 -> 1.4.7

Issue-ID: CCSDK-3841
Change-Id: I857c4f60977c31271c85da3a933c7cb12ed125bd
Signed-off-by: JohnKeeney <john.keeney@est.tech>
2 files changed
tree: 1b2c52987cce1096716e1475c476326a94295ca3
  1. dependencies-bom/
  2. dependencies-odl-bom/
  3. installed-odl-bom/
  4. odlparent/
  5. oparent/
  6. releases/
  7. springboot/
  8. standalone/
  9. tools/
  10. .gitignore
  11. INFO.yaml
  12. pom.xml
  13. Readme.MD
  14. version.properties
Readme.MD

!!!!! PLEASE READ !!!!!

The actual parent poms are being generated from below two pom-template

ODL related parent poms:

ccsdk/parent/odlparent/setup/src/main/template/pom-template.xml

Springboot related parent poms:

ccsdk/parent/springboot/spring-boot-setup/src/main/template/pom-template.xml

Note:

Any updates needed should be made to respective template and not to the generated pom.xml file/files.

Every parent pom has associated properties files (src/main/properties).
Setup module will read those properties and populate respective values within generated pom.xml