[Io7UetI2] Update jackson to 2.17.2 and aws-java-sdk-s3 to 1.12.770 to mitigate CWE-400 (#4180)

Author: Lojjs

LICENSES.txt

@@ -20,10 +20,10 @@ Apache-2.0
   audience-annotations-0.12.0.jar
   avro-1.9.2.jar
   awaitility-4.1.0.jar
-  aws-java-sdk-core-1.12.646.jar
-  aws-java-sdk-kms-1.12.646.jar
-  aws-java-sdk-s3-1.12.646.jar
-  byte-buddy-1.14.9.jar
+  aws-java-sdk-core-1.12.770.jar
+  aws-java-sdk-kms-1.12.770.jar
+  aws-java-sdk-s3-1.12.770.jar
+  byte-buddy-1.11.13.jar
   byte-buddy-agent-1.11.13.jar
   caffeine-3.0.3.jar
   cassandra-driver-core-3.10.0.jar
@@ -97,20 +97,21 @@ Apache-2.0
   jPowerShell-3.0.jar
   jProcesses-1.6.5.jar
   jackson-annotations-2.15.2.jar
-  jackson-annotations-2.17.0.jar
+  jackson-annotations-2.17.2.jar
   jackson-core-2.15.2.jar
-  jackson-core-2.17.0.jar
+  jackson-core-2.17.2.jar
   jackson-databind-2.15.2.jar
-  jackson-databind-2.17.0.jar
-  jackson-dataformat-cbor-2.17.0.jar
-  jackson-dataformat-csv-2.17.0.jar
+  jackson-databind-2.17.2.jar
+  jackson-dataformat-cbor-2.17.2.jar
+  jackson-dataformat-csv-2.17.2.jar
   jackson-datatype-jsr310-2.17.0.jar
+  jackson-datatype-jsr310-2.17.2.jar
   jackson-jaxrs-base-2.15.2.jar
-  jackson-jaxrs-base-2.17.0.jar
+  jackson-jaxrs-base-2.17.2.jar
   jackson-jaxrs-json-provider-2.15.2.jar
-  jackson-jaxrs-json-provider-2.17.0.jar
+  jackson-jaxrs-json-provider-2.17.2.jar
   jackson-module-jaxb-annotations-2.15.2.jar
-  jackson-module-jaxb-annotations-2.17.0.jar
+  jackson-module-jaxb-annotations-2.17.2.jar
   jakarta.validation-api-2.0.2.jar
   jamm-0.3.3.jar
   javapoet-1.13.0.jar
@@ -132,11 +133,11 @@ Apache-2.0
   jetty-xml-9.4.53.v20231009.jar
   jffi-1.2.16-native.jar
   jffi-1.2.16.jar
-  jmespath-java-1.12.646.jar
+  jmespath-java-1.12.770.jar
   jna-5.9.0.jar
   jnr-constants-0.9.9.jar
   jnr-ffi-2.1.7.jar
-  joda-time-2.8.1.jar
+  joda-time-2.12.7.jar
   json-path-2.9.0.jar
   json-smart-2.5.0.jar
   jsonschema2pojo-core-1.0.2.jar

NOTICE.txt

@@ -50,10 +50,10 @@ Apache-2.0
   audience-annotations-0.12.0.jar
   avro-1.9.2.jar
   awaitility-4.1.0.jar
-  aws-java-sdk-core-1.12.646.jar
-  aws-java-sdk-kms-1.12.646.jar
-  aws-java-sdk-s3-1.12.646.jar
-  byte-buddy-1.14.9.jar
+  aws-java-sdk-core-1.12.770.jar
+  aws-java-sdk-kms-1.12.770.jar
+  aws-java-sdk-s3-1.12.770.jar
+  byte-buddy-1.11.13.jar
   byte-buddy-agent-1.11.13.jar
   caffeine-3.0.3.jar
   cassandra-driver-core-3.10.0.jar
@@ -127,20 +127,21 @@ Apache-2.0
   jPowerShell-3.0.jar
   jProcesses-1.6.5.jar
   jackson-annotations-2.15.2.jar
-  jackson-annotations-2.17.0.jar
+  jackson-annotations-2.17.2.jar
   jackson-core-2.15.2.jar
-  jackson-core-2.17.0.jar
+  jackson-core-2.17.2.jar
   jackson-databind-2.15.2.jar
-  jackson-databind-2.17.0.jar
-  jackson-dataformat-cbor-2.17.0.jar
-  jackson-dataformat-csv-2.17.0.jar
+  jackson-databind-2.17.2.jar
+  jackson-dataformat-cbor-2.17.2.jar
+  jackson-dataformat-csv-2.17.2.jar
   jackson-datatype-jsr310-2.17.0.jar
+  jackson-datatype-jsr310-2.17.2.jar
   jackson-jaxrs-base-2.15.2.jar
-  jackson-jaxrs-base-2.17.0.jar
+  jackson-jaxrs-base-2.17.2.jar
   jackson-jaxrs-json-provider-2.15.2.jar
-  jackson-jaxrs-json-provider-2.17.0.jar
+  jackson-jaxrs-json-provider-2.17.2.jar
   jackson-module-jaxb-annotations-2.15.2.jar
-  jackson-module-jaxb-annotations-2.17.0.jar
+  jackson-module-jaxb-annotations-2.17.2.jar
   jakarta.validation-api-2.0.2.jar
   jamm-0.3.3.jar
   javapoet-1.13.0.jar
@@ -162,11 +163,11 @@ Apache-2.0
   jetty-xml-9.4.53.v20231009.jar
   jffi-1.2.16-native.jar
   jffi-1.2.16.jar
-  jmespath-java-1.12.646.jar
+  jmespath-java-1.12.770.jar
   jna-5.9.0.jar
   jnr-constants-0.9.9.jar
   jnr-ffi-2.1.7.jar
-  joda-time-2.8.1.jar
+  joda-time-2.12.7.jar
   json-path-2.9.0.jar
   json-smart-2.5.0.jar
   jsonschema2pojo-core-1.0.2.jar

core-it/build.gradle

@@ -9,7 +9,7 @@ dependencies {
     testImplementation project(':test-utils')
     testImplementation project(':core').sourceSets.test.output
 
-    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.646'
+    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.770'
     testImplementation group: 'org.xmlunit', name: 'xmlunit-core', version: '2.9.1'
 
     configurations.all {

core/build.gradle

@@ -62,7 +62,7 @@ dependencies {
 
     testImplementation 'net.sourceforge.jexcelapi:jxl:2.6.12'
 
-    compileOnly group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.646'
+    compileOnly group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.770'
 
     testImplementation group: 'org.reflections', name: 'reflections', version: '0.9.12'
     testImplementation group: 'junit', name: 'junit', version: '4.13.1'
@@ -98,8 +98,8 @@ dependencies {
     testImplementation 'org.mock-server:mockserver-netty:5.15.0'
     testImplementation 'org.mock-server:mockserver-client-java:5.15.0'
 
-    compileOnly group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.646' , withoutJacksons
-    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.646' , withoutJacksons
+    compileOnly group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.770' , withoutJacksons
+    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.770' , withoutJacksons
 
     implementation group: 'com.opencsv', name: 'opencsv', version: '5.7.1'
     implementation group: 'commons-beanutils', name: 'commons-beanutils', version: '1.9.4'

extra-dependencies/aws/build.gradle

@@ -20,6 +20,6 @@ jar {
 }
 
 dependencies {
-    implementation group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.646'
-    implementation group: 'com.amazonaws', name: 'aws-java-sdk-sts', version: '1.12.646'
+    implementation group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.770'
+    implementation group: 'com.amazonaws', name: 'aws-java-sdk-sts', version: '1.12.770'
 }

extra-dependencies/nlp/build.gradle

@@ -26,7 +26,7 @@ def withoutJacksons = {
 
 dependencies {
     implementation group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.646' , withoutJacksons
-    implementation group: 'com.fasterxml.jackson.module', name: 'jackson-module-kotlin', version: '2.14.0', withoutJacksons
+    implementation group: 'com.fasterxml.jackson.module', name: 'jackson-module-kotlin', version: '2.17.2', withoutJacksons
     implementation 'org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.6.0'
 }
 

full-it/build.gradle

@@ -11,7 +11,7 @@ dependencies {
     testImplementation project(':core').sourceSets.test.output
     testImplementation project(':full').sourceSets.test.output
 
-    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.646'
+    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.770'
     testImplementation group: 'org.xmlunit', name: 'xmlunit-core', version: '2.9.1'
 
     configurations.all {

full/build.gradle

@@ -88,8 +88,8 @@ dependencies {
 
     testImplementation 'net.sourceforge.jexcelapi:jxl:2.6.12'
 
-    compileOnly group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.646'
-    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.646'
+    compileOnly group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.770'
+    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.770'
 
     testImplementation group: 'org.reflections', name: 'reflections', version: '0.9.12'
 
@@ -125,17 +125,17 @@ dependencies {
 
     compileOnly group: 'org.neo4j', name: 'neo4j', version: neo4jVersionEffective
 
-    compileOnly group: 'com.fasterxml.jackson.module', name: 'jackson-module-kotlin', version: '2.14.0', withoutJacksons
+    compileOnly group: 'com.fasterxml.jackson.module', name: 'jackson-module-kotlin', version: '2.17.2', withoutJacksons
     compileOnly 'org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.6.0'
 
-    testImplementation group: 'com.fasterxml.jackson.module', name: 'jackson-module-kotlin', version: '2.14.0', withoutJacksons
+    testImplementation group: 'com.fasterxml.jackson.module', name: 'jackson-module-kotlin', version: '2.17.2', withoutJacksons
     testImplementation 'org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.6.0'
 
     testImplementation 'org.mock-server:mockserver-netty:5.15.0'
     testImplementation 'org.mock-server:mockserver-client-java:5.15.0'
 
-    compileOnly group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.646' , withoutJacksons
-    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.646' , withoutJacksons
+    compileOnly group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.770' , withoutJacksons
+    testImplementation group: 'com.amazonaws', name: 'aws-java-sdk-comprehend', version: '1.12.770' , withoutJacksons
 
     implementation group: 'com.opencsv', name: 'opencsv', version: '5.7.1'
     implementation group: 'commons-beanutils', name: 'commons-beanutils', version: '1.9.4'
@@ -154,7 +154,7 @@ dependencies {
     testImplementation group: 'org.hamcrest', name: 'hamcrest', version: '2.2'
     testImplementation group: 'org.hamcrest', name: 'hamcrest-library', version: '2.2'
 
-    testImplementation group: 'com.fasterxml.jackson.dataformat', name: 'jackson-dataformat-csv', version: '2.14.0'
+    testImplementation group: 'com.fasterxml.jackson.dataformat', name: 'jackson-dataformat-csv', version: '2.17.2'
     testImplementation group: 'org.skyscreamer', name: 'jsonassert', version: '1.5.0'
     testImplementation group: 'org.assertj', name: 'assertj-core', version: '3.13.2'
 

test-utils/build.gradle

@@ -29,9 +29,9 @@ dependencies {
 
     api group: 'org.neo4j.driver', name: 'neo4j-java-driver', version: '4.4.14'
     api group: 'org.jetbrains', name: 'annotations', version: "17.0.0"
-    api group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.646'
+    api group: 'com.amazonaws', name: 'aws-java-sdk-s3', version: '1.12.770'
 
-    api group: 'com.fasterxml.jackson.dataformat', name: 'jackson-dataformat-csv', version: '2.14.0'
+    api group: 'com.fasterxml.jackson.dataformat', name: 'jackson-dataformat-csv', version: '2.17.2'
 
     // Test Containers
     api group: 'org.testcontainers', name: 'testcontainers', version: testContainersVersion