This is an automated email from the ASF dual-hosted git repository.
davsclaus pushed a commit to branch camel-3.4.x
in repository https://gitbox.apache.org/repos/asf/camel.git
The following commit(s) were added to refs/heads/camel-3.4.x by this push:
new 5f52e15 camel-catalog-maven - Use commons-codec from Camel BOM so we
can control it as otherwise an older CVE infected may be picked up by sec vul
reporting tools.
5f52e15 is described below
commit 5f52e15d64a7e6f1aa459d718b58c4a4db2fd2b9
Author: Claus Ibsen <[email protected]>
AuthorDate: Tue Jul 28 16:16:48 2020 +0200
camel-catalog-maven - Use commons-codec from Camel BOM so we can control it
as otherwise an older CVE infected may be picked up by sec vul reporting tools.
---
catalog/camel-catalog-maven/pom.xml | 10 ++++++++++
1 file changed, 10 insertions(+)
diff --git a/catalog/camel-catalog-maven/pom.xml
b/catalog/camel-catalog-maven/pom.xml
index 6170dbe..5a71b21 100644
--- a/catalog/camel-catalog-maven/pom.xml
+++ b/catalog/camel-catalog-maven/pom.xml
@@ -48,6 +48,16 @@
<dependency>
<groupId>org.apache.httpcomponents</groupId>
<artifactId>httpclient</artifactId>
+ <exclusions>
+ <exclusion>
+ <groupId>commons-codec</groupId>
+ <artifactId>commons-codec</artifactId>
+ </exclusion>
+ </exclusions>
+ </dependency>
+ <dependency>
+ <groupId>commons-codec</groupId>
+ <artifactId>commons-codec</artifactId>
</dependency>
<!-- disable all components -->
