From 300246ef0c2a8f4fe1eb20ab785ccaf253f76329 Mon Sep 17 00:00:00 2001 From: pvannierop Date: Mon, 7 Oct 2024 10:58:22 +0200 Subject: [PATCH 1/5] Upgrade jackson to 2.15.0 Done to remove software vulnerability. --- build.gradle | 2 ++ gradle.properties | 2 +- 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index 6acc14e1a..728fc5177 100644 --- a/build.gradle +++ b/build.gradle @@ -142,6 +142,8 @@ if (project.hasProperty('graphite')) { //ext.moduleDescription = 'Management Portal application' ext.findbugAnnotationVersion = '3.0.2' +// Needed to force the import by Spring Dependency Management Plugin +ext['jackson.version'] = "${jackson_version}" dependencies { implementation("tech.jhipster:jhipster-framework:${jhipster_server_version}") diff --git a/gradle.properties b/gradle.properties index 9dfa9af61..6d124e6f9 100644 --- a/gradle.properties +++ b/gradle.properties @@ -30,7 +30,7 @@ mapstruct_version=1.4.2.Final undertow_version=2.2.32.Final yarn_version=1.22.15 spring_data_envers_version=2.5.6 -jackson_version=2.13.4 +jackson_version=2.15.0 jackson_dataformat_version=2.13.4 javax_xml_bind_version=2.3.3 javax_jaxb_core_version=2.3.0.1 From 9ccdb31f614215604846793169b16c9743514012 Mon Sep 17 00:00:00 2001 From: pvannierop Date: Mon, 7 Oct 2024 11:01:27 +0200 Subject: [PATCH 2/5] Upgrade undertow to 2.2.34 Done to remove software vulnerability. --- gradle.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gradle.properties b/gradle.properties index 6d124e6f9..8d4bb7629 100644 --- a/gradle.properties +++ b/gradle.properties @@ -27,7 +27,7 @@ springfox_version=2.6.1 spring_boot_version=2.7.15 gatling_version=3.10.0 mapstruct_version=1.4.2.Final -undertow_version=2.2.32.Final +undertow_version=2.2.34.Final yarn_version=1.22.15 spring_data_envers_version=2.5.6 jackson_version=2.15.0 From 2c3206578bf675fcf35d8e2c8429a0312913d057 Mon Sep 17 00:00:00 2001 From: pvannierop Date: Mon, 7 Oct 2024 12:17:26 +0200 Subject: [PATCH 3/5] Upgrade jackson to 2.15.0 Done to remove software vulnerability. --- build.gradle | 2 +- gradle.properties | 2 +- managementportal-client/build.gradle | 2 +- oauth-client-util/build.gradle | 4 ++-- radar-auth/build.gradle | 4 ++-- 5 files changed, 7 insertions(+), 7 deletions(-) diff --git a/build.gradle b/build.gradle index 728fc5177..72557d5a9 100644 --- a/build.gradle +++ b/build.gradle @@ -143,7 +143,7 @@ if (project.hasProperty('graphite')) { //ext.moduleDescription = 'Management Portal application' ext.findbugAnnotationVersion = '3.0.2' // Needed to force the import by Spring Dependency Management Plugin -ext['jackson.version'] = "${jackson_version}" +ext['jackson.version'] = '2.15.0' dependencies { implementation("tech.jhipster:jhipster-framework:${jhipster_server_version}") diff --git a/gradle.properties b/gradle.properties index 8d4bb7629..b1523ded3 100644 --- a/gradle.properties +++ b/gradle.properties @@ -31,7 +31,7 @@ undertow_version=2.2.34.Final yarn_version=1.22.15 spring_data_envers_version=2.5.6 jackson_version=2.15.0 -jackson_dataformat_version=2.13.4 +jackson_dataformat_version=2.15.0 javax_xml_bind_version=2.3.3 javax_jaxb_core_version=2.3.0.1 javax_jaxb_runtime_version=2.3.4 diff --git a/managementportal-client/build.gradle b/managementportal-client/build.gradle index 7f2871972..64be3bddb 100644 --- a/managementportal-client/build.gradle +++ b/managementportal-client/build.gradle @@ -24,7 +24,7 @@ repositories { } ext { - jacksonModuleVersion = "2.13.4" + jacksonModuleVersion = "2.15.0" okhttpVersion = "4.9.1" junitVersion = "5.7.2" } diff --git a/oauth-client-util/build.gradle b/oauth-client-util/build.gradle index 2b263f18c..c5f81e40d 100644 --- a/oauth-client-util/build.gradle +++ b/oauth-client-util/build.gradle @@ -1,5 +1,5 @@ -ext.jacksonVersion = '2.13.4' -ext.jacksonYamlVersion = '2.13.4' +ext.jacksonVersion = '2.15.0' +ext.jacksonYamlVersion = '2.15.0' ext.okhttpVersion = '4.9.1' ext.junitVersion ='5.7.2' diff --git a/radar-auth/build.gradle b/radar-auth/build.gradle index 7ca3be6ba..40ff452fa 100644 --- a/radar-auth/build.gradle +++ b/radar-auth/build.gradle @@ -5,8 +5,8 @@ plugins { apply plugin: 'maven-publish' ext { - jacksonVersion = '2.13.4' - jacksonYamlVersion = '2.13.4' + jacksonVersion = '2.15.0' + jacksonYamlVersion = '2.15.0' okhttpVersion = '4.9.1' oauthJwtVersion = '3.19.1' commonsCodecVersion = '1.15' From 012e22859f1fc54187cb760b2136fd8b1942d3ab Mon Sep 17 00:00:00 2001 From: pvannierop Date: Mon, 7 Oct 2024 12:29:57 +0200 Subject: [PATCH 4/5] Upgrade puppeteer to 22.11.2 Done to remove software vulnerability. --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index 42320df6e..9f9a7a999 100644 --- a/package.json +++ b/package.json @@ -25,7 +25,7 @@ "ng-qrcode": "^5.2.0", "ngx-cookie-service": "^12.0.3", "ngx-webstorage": "^8.0.0", - "puppeteer": "^22.4.1", + "puppeteer": "^22.11.2", "rxjs": "~6.6.0", "tslib": "^2.3.0", "zone.js": "~0.11.4" From 55d490d31cb8bfb5b7408e15366d5d22e7f2ce71 Mon Sep 17 00:00:00 2001 From: pvannierop Date: Mon, 7 Oct 2024 12:31:15 +0200 Subject: [PATCH 5/5] Upgrade jackson to 2.15.0 Done to remove software vulnerability. --- build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index 72557d5a9..728fc5177 100644 --- a/build.gradle +++ b/build.gradle @@ -143,7 +143,7 @@ if (project.hasProperty('graphite')) { //ext.moduleDescription = 'Management Portal application' ext.findbugAnnotationVersion = '3.0.2' // Needed to force the import by Spring Dependency Management Plugin -ext['jackson.version'] = '2.15.0' +ext['jackson.version'] = "${jackson_version}" dependencies { implementation("tech.jhipster:jhipster-framework:${jhipster_server_version}")