[Security] Manually Force Secure logback Dependencies (#1795) (#1798)

opensearch-trigger-bot[bot] · github-actions[bot] · web-flow · commit a4b4d2f2e2a0 · 2024-02-09T04:42:17.000-08:00
(cherry picked from commit 12dab80) Signed-off-by: Sean Li <lnse@amazon.com> Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
diff --git a/build.gradle b/build.gradle
@@ -155,6 +155,8 @@ configurations.all {
         force "org.mockito:mockito-core:4.6.1"
         force "org.yaml:snakeyaml:2.0"
         force "org.slf4j:slf4j-api:2.0.0"
+        force "ch.qos.logback:logback-classic:1.3.14"
+        force "ch.qos.logback:logback-core:1.3.14"
     }
 }
 

Original file line number	Diff line number	Diff line change
`@@ -155,6 +155,8 @@ configurations.all {`
`155`	`155`	`force "org.mockito:mockito-core:4.6.1"`
`156`	`156`	`force "org.yaml:snakeyaml:2.0"`
`157`	`157`	`force "org.slf4j:slf4j-api:2.0.0"`
	`158`	`+ force "ch.qos.logback:logback-classic:1.3.14"`
	`159`	`+ force "ch.qos.logback:logback-core:1.3.14"`
`158`	`160`	`}`
`159`	`161`	`}`
`160`	`162`