From 89e1209c928f48441d21571ca78a8aa545298866 Mon Sep 17 00:00:00 2001
From: Joakim Taule Kartveit <joakim.taule.kartveit@nav.no>
Date: Wed, 13 Nov 2024 10:37:29 +0100
Subject: [PATCH] bumped gradle wrapper to 8.11 and fixed vulnerability with
 commons-io:commons-io (#274)

---
 build.gradle.kts                         | 8 +++++++-
 gradle/wrapper/gradle-wrapper.properties | 2 +-
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/build.gradle.kts b/build.gradle.kts
index e16f079..e70b371 100644
--- a/build.gradle.kts
+++ b/build.gradle.kts
@@ -19,8 +19,9 @@ val verapdfVersion = "1.26.1"
 val ktfmtVersion = "0.44"
 val testcontainersVersion= "1.20.3"
 val pdfgencoreVersion = "1.1.33"
-val commonsCompressVersion = "1.27.1"
 
+val commonsCompressVersion = "1.27.1"
+val commonsIoVersion = "2.17.0"
 val javaVersion = JvmTarget.JVM_21
 
 
@@ -92,6 +93,11 @@ dependencies {
     implementation("io.github.openhtmltopdf:openhtmltopdf-pdfbox:$openHtmlToPdfVersion")
     implementation("io.github.openhtmltopdf:openhtmltopdf-slf4j:$openHtmlToPdfVersion")
     implementation("io.github.openhtmltopdf:openhtmltopdf-svg-support:$openHtmlToPdfVersion")
+    constraints {
+        implementation("commons-io:commons-io:$commonsIoVersion") {
+            because("Due to vulnerabilities in io.github.openhtmltopdf:openhtmltopdf-svg-support")
+        }
+    }
 
     implementation("com.fasterxml.jackson.datatype:jackson-datatype-jsr310:$jacksonVersion")
 
diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties
index df97d72..94113f2 100644
--- a/gradle/wrapper/gradle-wrapper.properties
+++ b/gradle/wrapper/gradle-wrapper.properties
@@ -1,6 +1,6 @@
 distributionBase=GRADLE_USER_HOME
 distributionPath=wrapper/dists
-distributionUrl=https\://services.gradle.org/distributions/gradle-8.10.2-bin.zip
+distributionUrl=https\://services.gradle.org/distributions/gradle-8.11-bin.zip
 networkTimeout=10000
 validateDistributionUrl=true
 zipStoreBase=GRADLE_USER_HOME