Upgrade to Maven 3.8.1 to address CVE-2021-26291

Author: jimbethancourt

pom.xml

@@ -77,6 +77,8 @@
         <!-- Needed to address Struts 1.3.8 vulnerabilities brought in by maven-reporting-impl -->
         <doxiaVersion>1.9.1</doxiaVersion>
         <doxiaSitetoolsVersion>1.9.2</doxiaSitetoolsVersion>
+
+        <maven.core.version>3.8.1</maven.core.version>
     </properties>
 
     <modules>
@@ -304,7 +306,7 @@
                 <artifactId>dependency-check-maven</artifactId>
                 <version>6.1.0</version>
                 <configuration>
-                    <failBuildOnCVSS>9.1</failBuildOnCVSS>
+                    <failBuildOnCVSS>8.0</failBuildOnCVSS>
                 </configuration>
                 <executions>
                     <execution>

refactor-first-maven-plugin/pom.xml

@@ -72,6 +72,12 @@
             <version>${doxiaSitetoolsVersion}</version>
         </dependency>
 
+        <dependency>
+            <groupId>org.apache.maven</groupId>
+            <artifactId>maven-core</artifactId>
+            <version>${maven.core.version}</version>
+        </dependency>
+
         <!-- Maven Reporting -->
         <dependency>
             <groupId>org.apache.maven.reporting</groupId>