Skip to content
This repository was archived by the owner on Aug 13, 2025. It is now read-only.

Commit 393e222

Browse files
rsendenrsenden
committed
fix: Update dependency versions
1 parent 3b79487 commit 393e222

File tree

2 files changed

+10
-10
lines changed

2 files changed

+10
-10
lines changed

build.gradle

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -24,11 +24,11 @@
2424
******************************************************************************/
2525

2626
plugins {
27-
id "org.springframework.boot" version "2.7.10"
28-
id 'com.github.jk1.dependency-license-report' version '2.1'
27+
id "org.springframework.boot" version "2.7.18"
28+
id 'com.github.jk1.dependency-license-report' version '2.6'
2929
id "org.kordamp.gradle.markdown" version "2.2.0"
30-
id 'com.google.cloud.tools.jib' version '3.3.1'
31-
id "io.freefair.lombok" version "8.0.1"
30+
id 'com.google.cloud.tools.jib' version '3.4.1'
31+
id "io.freefair.lombok" version "8.6"
3232
id 'eclipse'
3333
}
3434

@@ -73,20 +73,20 @@ allprojects {
7373
// Set up dependency management for all projects
7474
allprojects {
7575
dependencies {
76-
implementation platform('com.fortify.client.api:fortify-client-api-bom:6.1.7.RELEASE')
76+
implementation platform('com.fortify.client.api:fortify-client-api-bom:6.1.8.RELEASE')
7777
implementation platform(org.springframework.boot.gradle.plugin.SpringBootPlugin.BOM_COORDINATES)
7878

7979
constraints {
8080
implementation 'javax.validation:validation-api:2.0.1.Final'
8181
implementation 'org.hibernate:hibernate-validator:6.2.5.Final'
8282
implementation 'org.hibernate:hibernate-validator-annotation-processor:6.2.5.Final'
83-
implementation 'org.jsoup:jsoup:1.14.3'
83+
implementation 'org.jsoup:jsoup:1.17.2'
8484
implementation 'com.google.code.findbugs:jsr305:3.0.2'
8585
// Spring Boot declares dependency on snakeyaml 1.30, which contains known
8686
// vulnerabilities. According to https://stackoverflow.com/a/75875594, our
8787
// Spring Boot version is compatible with snakeyaml 2.0, which doesn't have
8888
// any known vulnerabilities, so we override the version here.
89-
implementation 'org.yaml:snakeyaml:2.0'
89+
implementation 'org.yaml:snakeyaml:2.2'
9090
}
9191
}
9292
}

src/main/java/com/fortify/vulnexport/FortifyVulnerabilityExporterExpressionHelper.java

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@
4040
import org.apache.commons.lang.StringUtils;
4141
import org.jsoup.Jsoup;
4242
import org.jsoup.nodes.Document;
43-
import org.jsoup.safety.Whitelist;
43+
import org.jsoup.safety.Safelist;
4444
import org.springframework.expression.EvaluationContext;
4545
import org.springframework.expression.common.TemplateParserContext;
4646
import org.springframework.expression.spel.support.StandardEvaluationContext;
@@ -129,7 +129,7 @@ public static final String htmlToText(String html) {
129129
document.select("br").append("\\n");
130130
document.select("p").prepend("\\n\\n");
131131
String s = document.html().replaceAll("\\\\n", "\n");
132-
return Jsoup.clean(s, "", Whitelist.none(), new Document.OutputSettings().prettyPrint(false));
132+
return Jsoup.clean(s, "", Safelist.none(), new Document.OutputSettings().prettyPrint(false));
133133
}
134134

135135
/**
@@ -138,7 +138,7 @@ public static final String htmlToText(String html) {
138138
*/
139139
public static final String htmlToSingleLineText(String html) {
140140
if( html==null ) { return null; }
141-
return Jsoup.clean(html, "", Whitelist.none());
141+
return Jsoup.clean(html, "", Safelist.none());
142142
}
143143

144144
/**

0 commit comments

Comments
 (0)