Fix CVE-2025-8916: Update bcpkix-jdk18on from 1.78.1 to 1.79 (#18834)

ashwintumma23 · web-flow · commit 4c1a28b2ccb8 · 2025-12-11T08:32:29.000-08:00
Upgraded org.bouncycastle:bcpkix-jdk18on version from 1.78.1 to 1.79 to resolve CVE-2025-8916.
diff --git a/licenses.yaml b/licenses.yaml
@@ -1119,7 +1119,7 @@ name: org.bouncycastle bcprov-jdk18on
 license_category: binary
 module: extensions/druid-kubernetes-extensions
 license_name: MIT License
-version: "1.78.1"
+version: "1.79"
 libraries:
   - org.bouncycastle: bcprov-jdk18on
   - org.bouncycastle: bcprov-ext-jdk18on
diff --git a/pom.xml b/pom.xml
@@ -425,7 +425,7 @@
             <dependency>
                 <groupId>org.bouncycastle</groupId>
                 <artifactId>bcpkix-jdk18on</artifactId>
-                <version>1.78.1</version>
+                <version>1.79</version>
             </dependency>
             <!-- Transitive dependency of hive-common in druid-kerberos, druid-ranger-security and
             druid-iceberg-extension  -->
