Upgrade elasticsearch v6.3.0
Resolves a security issue around information disclosure. The
recommendation is to upgrade to this version for the fix.
Issue-ID: POLICY-1063
Change-Id: Idebb19d2c530b716a25aa91832c053e6b2d0ffce
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
diff --git a/ONAP-PAP-REST/pom.xml b/ONAP-PAP-REST/pom.xml
index e335128..8abc400 100644
--- a/ONAP-PAP-REST/pom.xml
+++ b/ONAP-PAP-REST/pom.xml
@@ -160,7 +160,7 @@
<dependency>
<groupId>org.eclipse.jgit</groupId>
<artifactId>org.eclipse.jgit</artifactId>
- <version>3.2.0.201312181205-r</version>
+ <version>5.0.3.201809091024-r</version>
</dependency>
<dependency>
<groupId>org.apache.tomcat</groupId>
@@ -272,7 +272,7 @@
<dependency>
<groupId>org.elasticsearch</groupId>
<artifactId>elasticsearch</artifactId>
- <version>6.2.2</version>
+ <version>${elasticsearch.version}</version>
</dependency>
<dependency>
<groupId>io.searchbox</groupId>
diff --git a/POLICY-SDK-APP/pom.xml b/POLICY-SDK-APP/pom.xml
index 182ed41..5964a64 100644
--- a/POLICY-SDK-APP/pom.xml
+++ b/POLICY-SDK-APP/pom.xml
@@ -188,7 +188,7 @@
<dependency>
<groupId>org.elasticsearch</groupId>
<artifactId>elasticsearch</artifactId>
- <version>6.2.2</version>
+ <version>${elasticsearch.version}</version>
</dependency>
<dependency>
<groupId>org.json</groupId>
diff --git a/pom.xml b/pom.xml
index 794085f..4c055ac 100644
--- a/pom.xml
+++ b/pom.xml
@@ -65,6 +65,7 @@
<jackson.version>2.9.4</jackson.version>
<commons.fileupload.version>1.3.3</commons.fileupload.version>
<commons.compress.version>1.18</commons.compress.version>
+ <elasticsearch.version>6.3.0</elasticsearch.version>
</properties>
<modules>
<module>PolicyEngineUtils</module>