Skip to content

fix this vulnerability #636

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
RafMo20D wants to merge 111 commits into
base: develop
Choose a base branch
from
+16 −16
Open

fix this vulnerability #636

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
111 commits
Select commit Hold shift + click to select a range
4734ee2
Update pom.xml
RafMo20D Mar 18, 2022
23e4ee9
Create build.yml
RafMo20D Mar 18, 2022
341a8b5
Delete build.yml
RafMo20D Mar 18, 2022
00e93e9
Update pom.xml
RafMo20D Mar 18, 2022
db2e85d
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot Mar 18, 2022
0fee63d
Merge pull request #1 from RafMo20D/snyk-fix-94afe8194187f362d14691fe…
RafMo20D Mar 18, 2022
cdb18f7
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot Mar 18, 2022
555365b
Merge pull request #2 from RafMo20D/snyk-fix-b6351441938f4a64c220472e…
RafMo20D Mar 18, 2022
2faa781
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot Mar 18, 2022
cdd2578
Merge pull request #3 from RafMo20D/snyk-fix-ca41672ed4e0d481bce6d8c9…
RafMo20D Mar 18, 2022
e67a3dc
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot Mar 18, 2022
a94e367
Merge pull request #4 from RafMo20D/snyk-fix-c34164332127ef0500fd8736…
RafMo20D Mar 18, 2022
a51bb32
fix: upgrade org.junit.jupiter:junit-jupiter from 5.5.2 to 5.8.2
snyk-bot Mar 20, 2022
fadce62
fix: upgrade de.siegmar:logback-gelf from 2.0.0 to 2.2.0
snyk-bot Mar 20, 2022
a45379f
fix: upgrade org.iban4j:iban4j from 3.2.1 to 3.2.3-RELEASE
snyk-bot Mar 20, 2022
5953415
fix: upgrade org.mapstruct:mapstruct from 1.4.1.Final to 1.4.2.Final
snyk-bot Mar 20, 2022
f1259a2
fix: upgrade org.springframework:spring-web from 5.2.19.RELEASE to 5.…
snyk-bot Mar 20, 2022
4ed45d2
fix: upgrade org.antlr:antlr4-runtime from 4.7.2 to 4.9.3
snyk-bot Mar 20, 2022
7e7a44d
fix: upgrade org.jgrapht:jgrapht-core from 1.3.0 to 1.5.1
snyk-bot Mar 20, 2022
39fd95a
fix: upgrade org.webjars:swagger-ui from 3.25.0 to 3.52.5
snyk-bot Mar 20, 2022
71d2627
fix: upgrade com.squareup:javapoet from 1.11.1 to 1.13.0
snyk-bot Mar 20, 2022
9a427d7
fix: upgrade org.webjars:webjars-locator from 0.38 to 0.45
snyk-bot Mar 20, 2022
4521641
Merge pull request #15 from RafMo20D/snyk-upgrade-ae9ea1c4ade3a5a8aa1…
RafMo20D Mar 21, 2022
de016de
Merge pull request #14 from RafMo20D/snyk-upgrade-ba22d133eddf9333f9c…
RafMo20D Mar 21, 2022
803e039
Merge pull request #13 from RafMo20D/snyk-upgrade-9ec44a70a4dfcbfca49…
RafMo20D Mar 21, 2022
456bb26
Merge pull request #12 from RafMo20D/snyk-upgrade-f7667a03d286ecba4df…
RafMo20D Mar 21, 2022
191f8f1
Merge pull request #11 from RafMo20D/snyk-upgrade-63f0ba5dcc16a7bc226…
RafMo20D Mar 21, 2022
29ba694
Merge pull request #10 from RafMo20D/snyk-upgrade-31b1141e30fe6f0cab0…
RafMo20D Mar 21, 2022
4c1da94
Merge pull request #9 from RafMo20D/snyk-upgrade-7e6b546a5e9565135027…
RafMo20D Mar 21, 2022
9e80457
Merge pull request #8 from RafMo20D/snyk-upgrade-cd4aa8389e6366989e45…
RafMo20D Mar 21, 2022
a8d854c
Merge pull request #7 from RafMo20D/snyk-upgrade-16fba93de594e92b0b29…
RafMo20D Mar 21, 2022
434ea4c
Merge pull request #5 from RafMo20D/snyk-upgrade-a4f6085cb074027170cc…
RafMo20D Mar 21, 2022
ead7dc1
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot Mar 31, 2022
7c4e5b5
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot Apr 5, 2022
a418587
Merge pull request #17 from RafMo20D/snyk-fix-ce7eac4d63c537fa6e84884…
RafMo20D Apr 5, 2022
1ad22d5
Merge pull request #16 from RafMo20D/snyk-fix-3ea26231c0b815e18051a8e…
RafMo20D Apr 5, 2022
c915625
fix: upgrade org.antlr:antlr4-runtime from 4.9.3 to 4.10
snyk-bot May 3, 2022
855cd47
Merge pull request #18 from RafMo20D/snyk-upgrade-caab8cae65a648689a4…
RafMo20D May 4, 2022
4fcef3b
fix: upgrade org.springframework:spring-web from 5.3.18 to 5.3.19
snyk-bot May 6, 2022
f9958a1
Merge pull request #19 from RafMo20D/snyk-upgrade-b6d8b652be3077c8e2c…
RafMo20D May 6, 2022
4f488f8
fix: upgrade org.antlr:antlr4-runtime from 4.10 to 4.10.1
snyk-bot May 7, 2022
6c61524
Merge pull request #20 from RafMo20D/snyk-upgrade-7537e46939bf8b1d905…
RafMo20D May 11, 2022
dc7da3b
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot May 12, 2022
0783cee
Merge pull request #21 from RafMo20D/snyk-fix-7c460819ae957a0b34a755c…
RafMo20D May 13, 2022
9944f5d
fix: upgrade io.swagger.parser.v3:swagger-parser from 2.0.32 to 2.0.33
snyk-bot Jun 11, 2022
c072450
Merge pull request #22 from RafMo20D/snyk-upgrade-f6f08183e11d7219557…
RafMo20D Jun 12, 2022
09d2545
fix: upgrade org.apache.commons:commons-lang3 from 3.9 to 3.12.0
snyk-bot Jun 18, 2022
7697ad6
fix: upgrade com.nimbusds:nimbus-jose-jwt from 8.4 to 8.23
snyk-bot Jun 19, 2022
26fee90
fix: upgrade org.mapstruct:mapstruct from 1.4.2.Final to 1.5.0.Final
snyk-bot Jun 24, 2022
00d81bc
Merge pull request #28 from RafMo20D/snyk-upgrade-3c6c5297b17d0abb4bb…
RafMo20D Jul 4, 2022
bea4332
Merge pull request #27 from RafMo20D/snyk-upgrade-ac57e78cb121fe212fc…
RafMo20D Jul 4, 2022
8fee501
fix: upgrade org.mapstruct:mapstruct from 1.5.0.Final to 1.5.1.Final
snyk-bot Jul 5, 2022
054feeb
Merge pull request #29 from RafMo20D/snyk-upgrade-55880bc7949dd034df5…
RafMo20D Jul 5, 2022
e6f99a8
fix: upgrade org.springframework:spring-web from 5.3.20 to 5.3.21
snyk-bot Jul 7, 2022
e7f0e83
fix: pom.xml to reduce vulnerabilities
snyk-bot Jul 9, 2022
8cba2c9
fix: upgrade io.swagger.parser.v3:swagger-parser from 2.0.33 to 2.1.0
snyk-bot Jul 9, 2022
bef3544
Merge pull request #30 from RafMo20D/snyk-upgrade-3881cc2c2d4d4a56775…
RafMo20D Jul 9, 2022
bb5fa77
fix: upgrade org.apache.lucene:lucene-core from 8.1.1 to 8.11.2
snyk-bot Jul 10, 2022
159e4de
Merge pull request #33 from RafMo20D/snyk-upgrade-8b2af98371cdb942447…
RafMo20D Jul 13, 2022
18dadbd
Merge pull request #32 from RafMo20D/snyk-upgrade-11bb75038ee98669cbe…
RafMo20D Jul 13, 2022
bfa450d
Merge pull request #31 from RafMo20D/snyk-fix-07e31be43d8feb23a974e1e…
RafMo20D Jul 13, 2022
945f8e1
fix: upgrade org.mapstruct:mapstruct from 1.5.1.Final to 1.5.2.Final
snyk-bot Jul 14, 2022
d2ff2e5
Merge pull request #34 from RafMo20D/snyk-upgrade-b4b62f66246dae944d3…
RafMo20D Jul 14, 2022
e09c8ae
fix: upgrade io.swagger.parser.v3:swagger-parser from 2.1.0 to 2.1.1
snyk-bot Jul 14, 2022
1c6b3ad
Merge pull request #35 from RafMo20D/snyk-upgrade-f0c8fb21476e9d5de86…
RafMo20D Jul 15, 2022
ee0fbd7
fix: upgrade org.springframework:spring-web from 5.3.21 to 5.3.22
snyk-bot Aug 5, 2022
c0927ed
Merge pull request #36 from RafMo20D/snyk-upgrade-d504b91712e2bf75e19…
RafMo20D Aug 14, 2022
d72e99c
Merge pull request #26 from RafMo20D/snyk-upgrade-d1cbb8c84ca5ab29149…
RafMo20D Aug 14, 2022
3719c94
fix: upgrade org.junit.jupiter:junit-jupiter from 5.8.2 to 5.9.0
snyk-bot Aug 18, 2022
989ca54
Merge pull request #37 from RafMo20D/snyk-upgrade-b993d04c49dd8844f60…
RafMo20D Aug 23, 2022
40ee530
fix: upgrade io.swagger.parser.v3:swagger-parser from 2.1.1 to 2.1.2
snyk-bot Sep 6, 2022
8125549
fix: pom.xml to reduce vulnerabilities
snyk-bot Sep 16, 2022
a57402b
Merge pull request #39 from RafMo20D/snyk-fix-4a9fcc2abb7cba326d54cfc…
RafMo20D Sep 18, 2022
dacd214
Merge pull request #38 from RafMo20D/snyk-upgrade-306d1622da113b951a0…
RafMo20D Sep 18, 2022
bd8920a
fix: upgrade org.antlr:antlr4-runtime from 4.10.1 to 4.11.0
snyk-bot Sep 26, 2022
9d88e21
fix: upgrade org.springframework:spring-web from 5.3.22 to 5.3.23
snyk-bot Oct 7, 2022
5482b25
Merge pull request #41 from RafMo20D/snyk-upgrade-0f0dea4dd3cf917f4b4…
RafMo20D Oct 10, 2022
b38b970
fix: upgrade org.junit.jupiter:junit-jupiter from 5.9.0 to 5.9.1
snyk-bot Oct 14, 2022
7208729
fix: upgrade org.mapstruct:mapstruct from 1.5.2.Final to 1.5.3.Final
snyk-bot Oct 29, 2022
4c349ea
fix: pom.xml to reduce vulnerabilities
snyk-bot Nov 3, 2022
74ca212
Merge pull request #46 from RafMo20D/snyk-fix-f6ce26e0dc2e8f6766be013…
RafMo20D Nov 5, 2022
da5644e
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot Nov 16, 2022
52b1cad
fix: xs2a-adapter-rest-impl/pom.xml to reduce vulnerabilities
snyk-bot Feb 21, 2023
f49c31f
Merge pull request #48 from RafMo20D/snyk-fix-e5cb6ef2a3d341a3969ae00…
RafMo20D Feb 21, 2023
a4334b4
Merge pull request #47 from RafMo20D/snyk-fix-b46ed265613cc64a200c903…
RafMo20D Feb 21, 2023
3fec817
Merge pull request #44 from RafMo20D/snyk-upgrade-94814ba2753b9a6f356…
RafMo20D Feb 21, 2023
71eab38
Merge pull request #42 from RafMo20D/snyk-upgrade-828feb3973e42677955…
RafMo20D Feb 21, 2023
410f39a
Merge pull request #40 from RafMo20D/snyk-upgrade-dde61253649b4a7c369…
RafMo20D Feb 21, 2023
50a91da
Merge branch 'adorsys:develop' into develop
RafMo20D Feb 21, 2023
a0ea1c1
fix: upgrade org.junit.jupiter:junit-jupiter from 5.9.1 to 5.9.2
snyk-bot Feb 22, 2023
3d8e404
fix: upgrade org.springframework:spring-web from 5.3.23 to 5.3.25
snyk-bot Feb 22, 2023
f170687
Merge pull request #50 from RafMo20D/snyk-upgrade-e6378e09181cdd699eb…
RafMo20D Feb 25, 2023
cb306c1
fix: upgrade org.iban4j:iban4j from 3.2.3-RELEASE to 3.2.4-RELEASE
snyk-bot Feb 25, 2023
e677cff
Merge pull request #52 from RafMo20D/snyk-upgrade-391d760b6b0e39a9001…
RafMo20D Feb 26, 2023
577c74b
fix: upgrade org.antlr:antlr4-runtime from 4.11.0 to 4.11.1
snyk-bot Feb 26, 2023
7858514
Merge pull request #53 from RafMo20D/snyk-upgrade-f1b3189dba0f0624272…
RafMo20D Mar 4, 2023
23bec0b
Merge pull request #51 from RafMo20D/snyk-upgrade-dd443b9364297a6c1e6…
RafMo20D Mar 4, 2023
817ac7d
fix: upgrade org.antlr:antlr4-runtime from 4.11.1 to 4.12.0
snyk-bot Mar 14, 2023
4252ca4
Merge pull request #54 from RafMo20D/snyk-upgrade-d7b59dc5749cf444550…
RafMo20D Mar 18, 2023
3631526
fix: pom.xml to reduce vulnerabilities
snyk-bot Mar 24, 2023
90fd748
Merge pull request #55 from RafMo20D/snyk-fix-5db80fb09bbacc9d9d74769…
RafMo20D Mar 24, 2023
f2d374e
fix: pom.xml to reduce vulnerabilities
snyk-bot Jun 21, 2023
3982222
Merge pull request #59 from RafMo20D/snyk-fix-07b656c73c62b2c0d482993…
RafMo20D Jun 21, 2023
500b2a3
fix: pom.xml to reduce vulnerabilities
snyk-bot Aug 31, 2023
b28847a
Merge pull request #60 from RafMo20D/snyk-fix-92f0c7103b59df4ff2e1e82…
RafMo20D Sep 1, 2023
dfb6aaa
fix: pom.xml to reduce vulnerabilities
snyk-bot Nov 15, 2023
41f94db
Merge pull request #62 from RafMo20D/snyk-fix-6b5b468d31f4960b9d30c77…
RafMo20D Nov 16, 2023
1a7bde5
fix: pom.xml to reduce vulnerabilities
snyk-bot Feb 15, 2024
34006e0
Merge pull request #64 from RafMo20D/snyk-fix-8e088f298b19552cb71b1fd…
RafMo20D Feb 17, 2024
add54f6
fix: xs2a-adapter-codegen/pom.xml to reduce vulnerabilities
snyk-bot Mar 7, 2024
be7b10c
Merge pull request #66 from RafMo20D/snyk-fix-81197cb1791740b2b2b947a…
RafMo20D Mar 9, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
14 changes: 7 additions & 7 deletions pom.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -79,21 +79,21 @@
<spring-cloud.version>Hoxton.SR6</spring-cloud.version>

<!-- swagger -->
<swagger-ui.version>3.25.0</swagger-ui.version>
<swagger-ui.version>4.1.3</swagger-ui.version>

<!-- other -->
<servlet-api.version>4.0.0</servlet-api.version>
<docker.image>${project.artifactId}</docker.image>
<mapstruct.version>1.4.1.Final</mapstruct.version>
<mapstruct.version>1.5.3.Final</mapstruct.version>
<javatar-commons.version>0.8</javatar-commons.version>
<bouncycastle.version>1.64</bouncycastle.version>
<apache.commons.lang.version>3.9</apache.commons.lang.version>
<junit-jupiter.version>5.5.2</junit-jupiter.version>
<apache.commons.lang.version>3.12.0</apache.commons.lang.version>
<junit-jupiter.version>5.9.2</junit-jupiter.version>
<assertj.version>3.15.0</assertj.version>
<mockito.version>3.2.4</mockito.version>
<nimbus-jose-jwt.version>8.4</nimbus-jose-jwt.version>
<webjars-locator.version>0.38</webjars-locator.version>
<wiremock.version>2.27.1</wiremock.version>
<nimbus-jose-jwt.version>9.37.2</nimbus-jose-jwt.version>
<webjars-locator.version>0.47</webjars-locator.version>
<wiremock.version>3.0.0</wiremock.version>
<commons-fileupload.version>1.4</commons-fileupload.version>
<commons-logging.version>1.2</commons-logging.version>
<commons-io.version>2.8.0</commons-io.version>
Expand Down
2 changes: 1 addition & 1 deletion xs2a-adapter-app/pom.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
<modelVersion>4.0.0</modelVersion>
<properties>
<spring-boot-maven-plugin.version>2.1.3.RELEASE</spring-boot-maven-plugin.version>
<logback-gelf.version>2.0.0</logback-gelf.version>
<logback-gelf.version>2.2.0</logback-gelf.version>
<sonar.exclusions>
**/Xs2aAdapterApplication.java,
**/config/RestConfiguration.java
Expand Down
4 changes: 2 additions & 2 deletions xs2a-adapter-aspsp-registry/pom.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,8 +15,8 @@
<artifactId>xs2a-adapter-aspsp-registry</artifactId>

<properties>
<lucene.version>8.1.1</lucene.version>
<iban4j.version>3.2.1</iban4j.version>
<lucene.version>8.11.2</lucene.version>
<iban4j.version>3.2.4-RELEASE</iban4j.version>
</properties>

<dependencies>
Expand Down
10 changes: 5 additions & 5 deletions xs2a-adapter-codegen/pom.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -61,17 +61,17 @@
<dependency>
<groupId>io.swagger.parser.v3</groupId>
<artifactId>swagger-parser</artifactId>
<version>2.0.12</version>
<version>2.1.21</version>
</dependency>
<dependency>
<groupId>com.squareup</groupId>
<artifactId>javapoet</artifactId>
<version>1.11.1</version>
<version>1.13.0</version>
</dependency>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
<version>5.2.6.RELEASE</version>
<version>5.3.25</version>
</dependency>
<dependency>
<groupId>javax.annotation</groupId>
Expand All @@ -81,12 +81,12 @@
<dependency>
<groupId>org.antlr</groupId>
<artifactId>antlr4-runtime</artifactId>
<version>4.7.2</version>
<version>4.12.0</version>
</dependency>
<dependency>
<groupId>org.jgrapht</groupId>
<artifactId>jgrapht-core</artifactId>
<version>1.3.0</version>
<version>1.5.1</version>
</dependency>
</dependencies>

Expand Down
2 changes: 1 addition & 1 deletion xs2a-adapter-rest-impl/pom.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@
<artifactId>xs2a-adapter-rest-impl</artifactId>

<properties>
<commons-fileupload.version>1.4</commons-fileupload.version>
<commons-fileupload.version>1.5</commons-fileupload.version>
</properties>

<dependencies>
Expand Down