Update outdated/vulnerable dependencies
Signed-off-by: Vasyl Razinkov <vasyl.razinkov@est.tech>
Change-Id: Ib809c636cd4505589901d1f5b95bedba1fc0a1f5
Issue-ID: SDC-4560
diff --git a/pom.xml b/pom.xml
index 8670561..23d8261 100644
--- a/pom.xml
+++ b/pom.xml
@@ -43,9 +43,8 @@
<tosca.datatype.version>${project.version}</tosca.datatype.version>
<!-- 3rd parties versions -->
- <bean-matcher.version>0.11</bean-matcher.version>
- <lang3.version>3.10</lang3.version>
- <guava.version>30.1-jre</guava.version>
+ <lang3.version>3.12.0</lang3.version>
+ <guava.version>32.1.1-jre</guava.version>
<janusgraph.version>0.3.3</janusgraph.version>
<spring.version>5.3.27</spring.version>
<mvn.assembly.version>3.6.0</mvn.assembly.version>
@@ -60,34 +59,34 @@
<wire-mock.version>2.26.3</wire-mock.version>
<ecomp.version>3.4.0</ecomp.version>
<cassandra.unit.version>4.3.1.0</cassandra.unit.version>
- <cadi.version>2.1.8</cadi.version>
+ <cadi.version>2.1.21</cadi.version>
<lombok.version>1.18.24</lombok.version>
<commons-beanutils>1.9.4</commons-beanutils>
- <commons.io.version>2.8.0</commons.io.version>
+ <commons.io.version>2.13.0</commons.io.version>
<commons-configuration>2.8.0</commons-configuration>
<onap.logging.version>1.6.1</onap.logging.version>
<apache-commons-text.version>1.10.0</apache-commons-text.version>
<jaxb-api.version>2.3.1</jaxb-api.version>
<io.vavr.version>0.10.3</io.vavr.version>
- <groovy.version>3.0.7</groovy.version>
+ <groovy.version>4.0.13</groovy.version>
<swagger-core-mvn-plugin.version>2.1.7</swagger-core-mvn-plugin.version>
<maven-antrun-plugin.version>3.0.0</maven-antrun-plugin.version>
- <hibernate.validator.version>6.1.6.Final</hibernate.validator.version>
+ <hibernate.validator.version>6.2.5.Final</hibernate.validator.version>
<org.json.version>20220320</org.json.version>
<commons.collections.version>4.3</commons.collections.version>
- <ws.rs.version>2.1.1</ws.rs.version>
+ <ws.rs.version>2.1.6</ws.rs.version>
<javax.validation.version>2.0.1.Final</javax.validation.version>
- <jetty.version>9.4.49.v20220914</jetty.version>
+ <jetty.version>9.4.51.v20230217</jetty.version>
<jetty-distribution.version>${jetty.version}</jetty-distribution.version>
- <cxf.version>3.4.4</cxf.version>
+ <cxf.version>3.6.1</cxf.version>
<org.owasp.esapi.version>2.4.0.0</org.owasp.esapi.version>
<org.dom4j.version>2.1.3</org.dom4j.version>
<!-- Keycloak authentication-->
- <keycloak.version>18.0.0</keycloak.version>
+ <keycloak.version>21.1.1</keycloak.version>
<!-- JSON and YAML Parsing -->
<jackson.version>2.14.2</jackson.version>
@@ -99,25 +98,25 @@
<!-- Yaml for properties -->
<snakeyaml.version>1.33</snakeyaml.version>
<functionaljava.version>4.9</functionaljava.version>
- <httpclient.version>4.5.13</httpclient.version>
+ <httpmime.version>4.5.14</httpmime.version>
+ <httpclient.version>5.2.1</httpclient.version>
<httpcore.version>4.4.15</httpcore.version>
- <json-simple.version>1.1</json-simple.version>
+ <json-simple.version>1.1.1</json-simple.version>
<!-- PM Dictionary validation -->
- <onap.vnfsdk.validation.pmdictionary.version>1.2.15
- </onap.vnfsdk.validation.pmdictionary.version>
+ <onap.vnfsdk.validation.pmdictionary.version>1.2.15</onap.vnfsdk.validation.pmdictionary.version>
<!-- Logging start -->
<!-- logback -->
- <logback.version>1.2.10</logback.version>
- <slf4j-api.version>1.7.25</slf4j-api.version>
+ <logback.version>1.2.12</logback.version>
+ <slf4j-api.version>1.7.36</slf4j-api.version>
<commons-codec>1.15</commons-codec>
<commons-logging>1.2</commons-logging>
- <janino.version>3.0.6</janino.version>
+ <janino.version>3.1.9</janino.version>
<!-- aspects -->
- <jcabi.version>0.20.1</jcabi.version>
- <aspectj.version>1.9.7</aspectj.version>
+ <jcabi.version>0.21.1</jcabi.version>
+ <aspectj.version>1.9.19</aspectj.version>
<aspectjrt.version>${aspectj.version}</aspectjrt.version>
<jcabi.maven.plugin.version>0.13.2</jcabi.maven.plugin.version>
@@ -126,7 +125,7 @@
<sigar.version>1.6.4</sigar.version>
<!--GSON-->
- <gson.version>2.8.9</gson.version>
+ <gson.version>2.10.1</gson.version>
<!--listen to file changes-->
<commons-jci-core.version>1.1</commons-jci-core.version>
@@ -140,7 +139,7 @@
<assertj.version>3.16.0</assertj.version>
<testng.version>7.7.0</testng.version>
<cucumber.version>7.10.1</cucumber.version>
- <bean-matchers.version>0.11</bean-matchers.version>
+ <bean-matchers.version>0.14</bean-matchers.version>
<hamcrest.version>2.2</hamcrest.version>
<hamcrest-all.version>1.3</hamcrest-all.version>
<maven-surefire-plugin.version>2.22.2</maven-surefire-plugin.version>
@@ -185,10 +184,10 @@
<surefire.reuseForks>true</surefire.reuseForks>
<surefire.skip.tests>false</surefire.skip.tests>
- <bouncycastle.version>1.69</bouncycastle.version>
+ <bouncycastle.version>1.70</bouncycastle.version>
<!--DOCKER-->
- <docker.api.version>1.41</docker.api.version>
+ <docker.api.version>1.43</docker.api.version>
<docker.namespace>onap</docker.namespace>
<docker.password>docker</docker.password>
<docker.username>docker</docker.username>
@@ -196,8 +195,8 @@
<micrometer.version>1.8.4</micrometer.version>
- <minio.version>8.3.4</minio.version>
- <okhttp.version>4.9.3</okhttp.version>
+ <minio.version>8.5.4</minio.version>
+ <okhttp.version>4.11.0</okhttp.version>
<jsoup.version>1.15.3</jsoup.version>
@@ -265,7 +264,7 @@
<version>${lang3.version}</version>
</dependency>
<dependency>
- <groupId>org.codehaus.groovy</groupId>
+ <groupId>org.apache.groovy</groupId>
<artifactId>groovy</artifactId>
<version>${groovy.version}</version>
</dependency>
@@ -500,7 +499,7 @@
<plugin>
<groupId>io.fabric8</groupId>
<artifactId>docker-maven-plugin</artifactId>
- <version>0.38.0</version>
+ <version>0.43.0</version>
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
@@ -878,6 +877,7 @@
<skipYamlJsonValidator>true</skipYamlJsonValidator>
<checkstyle.skip>true</checkstyle.skip>
<jacoco.skip>true</jacoco.skip>
+
<docker.skip.run>true</docker.skip.run>
<maven.antrun.skip>true</maven.antrun.skip>
<swagger.skip>true</swagger.skip>