This is an automated email from the ASF dual-hosted git repository.
porcelli pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/incubator-kie-kogito-apps.git
The following commit(s) were added to refs/heads/main by this push:
new a8825b4e1 [incubator-kie-issues#1572] Fix CVE-2024-40094 (#2127)
a8825b4e1 is described below
commit a8825b4e11900737f57b6e9c5a22bd7d2d6ca8a7
Author: Gabriele Cardosi <[email protected]>
AuthorDate: Fri Oct 25 06:57:52 2024 +0200
[incubator-kie-issues#1572] Fix CVE-2024-40094 (#2127)
---
.../java/org/kie/kogito/index/graphql/GraphQLInstrumentation.java | 5 +++--
.../src/main/java/org/kie/kogito/jitexecutor/common/Constants.java | 4 ++--
kogito-apps-build-parent/pom.xml | 5 +++++
3 files changed, 10 insertions(+), 4 deletions(-)
diff --git
a/data-index/data-index-graphql/src/main/java/org/kie/kogito/index/graphql/GraphQLInstrumentation.java
b/data-index/data-index-graphql/src/main/java/org/kie/kogito/index/graphql/GraphQLInstrumentation.java
index a479318c7..65b3b82b6 100644
---
a/data-index/data-index-graphql/src/main/java/org/kie/kogito/index/graphql/GraphQLInstrumentation.java
+++
b/data-index/data-index-graphql/src/main/java/org/kie/kogito/index/graphql/GraphQLInstrumentation.java
@@ -20,6 +20,7 @@ package org.kie.kogito.index.graphql;
import com.fasterxml.jackson.databind.JsonNode;
+import graphql.execution.instrumentation.InstrumentationState;
import graphql.execution.instrumentation.SimpleInstrumentation;
import
graphql.execution.instrumentation.parameters.InstrumentationExecutionParameters;
import
graphql.execution.instrumentation.parameters.InstrumentationFieldFetchParameters;
@@ -36,7 +37,7 @@ public class GraphQLInstrumentation extends
SimpleInstrumentation {
GraphQLSchemaManager manager;
@Override
- public DataFetcher<?> instrumentDataFetcher(DataFetcher<?> dataFetcher,
InstrumentationFieldFetchParameters parameters) {
+ public DataFetcher<?> instrumentDataFetcher(DataFetcher<?> dataFetcher,
InstrumentationFieldFetchParameters parameters, InstrumentationState
instrumentationState) {
if (parameters.getEnvironment().getSource() instanceof JsonNode &&
dataFetcher instanceof PropertyDataFetcher) {
return new JsonPropertyDataFetcher();
} else {
@@ -45,7 +46,7 @@ public class GraphQLInstrumentation extends
SimpleInstrumentation {
}
@Override
- public GraphQLSchema instrumentSchema(GraphQLSchema schema,
InstrumentationExecutionParameters parameters) {
+ public GraphQLSchema instrumentSchema(GraphQLSchema schema,
InstrumentationExecutionParameters parameters, InstrumentationState
instrumentationState) {
return manager.getGraphQLSchema();
}
}
diff --git
a/jitexecutor/jitexecutor-common/src/main/java/org/kie/kogito/jitexecutor/common/Constants.java
b/jitexecutor/jitexecutor-common/src/main/java/org/kie/kogito/jitexecutor/common/Constants.java
index ed8079006..17999225e 100644
---
a/jitexecutor/jitexecutor-common/src/main/java/org/kie/kogito/jitexecutor/common/Constants.java
+++
b/jitexecutor/jitexecutor-common/src/main/java/org/kie/kogito/jitexecutor/common/Constants.java
@@ -6,9 +6,9 @@
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
- * <p>
+ *
* http://www.apache.org/licenses/LICENSE-2.0
- * <p>
+ *
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
diff --git a/kogito-apps-build-parent/pom.xml b/kogito-apps-build-parent/pom.xml
index c5093d2eb..7cf06d016 100644
--- a/kogito-apps-build-parent/pom.xml
+++ b/kogito-apps-build-parent/pom.xml
@@ -190,6 +190,11 @@
<artifactId>hibernate-ant</artifactId>
<version>${version.org.hibernate}</version>
</dependency>
+ <dependency>
+ <groupId>com.graphql-java</groupId>
+ <artifactId>graphql-java</artifactId>
+ <version>${version.com.graphql-java-extended-scalars}</version>
+ </dependency>
<dependency>
<groupId>com.graphql-java</groupId>
<artifactId>graphql-java-extended-scalars</artifactId>
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
