Skip to content

Commit 3b5b2cb

Browse files
bestbeforetodaybestbeforetoday
authored
Update dependencies to address security vulnerabilities (#310)
- CVE-2020-15522 - CVE-2023-32732 - CVE-2022-3171 - CVE-2022-3509 - CVE-2022-3510 - CVE-2022-45688 Signed-off-by: Mark S. Lewis <[email protected]>
1 parent 7c1708a commit 3b5b2cb

File tree

1 file changed

+10
-10
lines changed

1 file changed

+10
-10
lines changed

fabric-chaincode-shim/build.gradle

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,7 @@
88
mavenCentral()
99
}
1010
dependencies {
11-
classpath 'org.owasp:dependency-check-gradle:7.4.3'
11+
classpath 'org.owasp:dependency-check-gradle:8.2.1'
1212
}
1313
}
1414

@@ -42,18 +42,18 @@ tasks.withType(org.gradle.api.tasks.testing.Test) {
4242

4343
dependencies {
4444
implementation group: 'org.hyperledger.fabric', name:'fabric-protos', version:'0.2.0'
45-
implementation 'org.bouncycastle:bcpkix-jdk15on:1.62'
46-
implementation 'org.bouncycastle:bcprov-jdk15on:1.62'
47-
implementation group: 'io.github.classgraph', name: 'classgraph', version: '4.8.146'
48-
implementation group: 'com.github.everit-org.json-schema', name: 'org.everit.json.schema', version: '1.14.1'
49-
implementation 'org.json:json:20220320'
50-
implementation group: 'com.google.protobuf', name: 'protobuf-java-util', version: '3.20.1'
45+
implementation 'org.bouncycastle:bcpkix-jdk18on:1.75'
46+
implementation 'org.bouncycastle:bcprov-jdk18on:1.75'
47+
implementation 'io.github.classgraph:classgraph:4.8.161'
48+
implementation group: 'com.github.everit-org.json-schema', name: 'org.everit.json.schema', version: '1.14.2'
49+
implementation 'org.json:json:20230618'
50+
implementation group: 'com.google.protobuf', name: 'protobuf-java-util', version: '3.19.6'
5151

5252
// Required if using Java 11+ as no longer bundled in the core libraries
5353
testImplementation group: 'javax.xml.bind', name: 'jaxb-api', version: '2.3.1'
54-
implementation 'io.grpc:grpc-netty-shaded:1.46.0'
55-
implementation 'io.grpc:grpc-protobuf:1.46.0'
56-
implementation 'io.grpc:grpc-stub:1.46.0'
54+
implementation 'io.grpc:grpc-netty-shaded:1.45.4'
55+
implementation 'io.grpc:grpc-protobuf:1.45.4'
56+
implementation 'io.grpc:grpc-stub:1.45.4'
5757

5858
implementation platform("io.opentelemetry:opentelemetry-bom:1.6.0")
5959

0 commit comments

Comments
 (0)