knox git commit: KNOX-1513 - Upgrade spring-core to 5.0.9.RELEASE

krisden Thu, 04 Oct 2018 13:59:23 -0700

Repository: knox
Updated Branches:
  refs/heads/master ff41f5656 -> 97f6525a4



KNOX-1513 - Upgrade spring-core to 5.0.9.RELEASE

Signed-off-by: Kevin Risden <[email protected]>


Project: http://git-wip-us.apache.org/repos/asf/knox/repo
Commit: http://git-wip-us.apache.org/repos/asf/knox/commit/97f6525a
Tree: http://git-wip-us.apache.org/repos/asf/knox/tree/97f6525a
Diff: http://git-wip-us.apache.org/repos/asf/knox/diff/97f6525a

Branch: refs/heads/master
Commit: 97f6525a405117e02938251c9f66e03c7de48571
Parents: ff41f56
Author: Kevin Risden <[email protected]>
Authored: Thu Oct 4 16:16:46 2018 -0400
Committer: Kevin Risden <[email protected]>
Committed: Thu Oct 4 16:58:17 2018 -0400

----------------------------------------------------------------------
 gateway-provider-security-pac4j/pom.xml | 11 +++++++++++
 1 file changed, 11 insertions(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/knox/blob/97f6525a/gateway-provider-security-pac4j/pom.xml
----------------------------------------------------------------------
diff --git a/gateway-provider-security-pac4j/pom.xml 
b/gateway-provider-security-pac4j/pom.xml
index 15acfaa..e2de91e 100644
--- a/gateway-provider-security-pac4j/pom.xml
+++ b/gateway-provider-security-pac4j/pom.xml
@@ -32,6 +32,7 @@
         <bcprov-jdk15on.version>1.60</bcprov-jdk15on.version>
         <j2e-pac4j.version>4.0.0</j2e-pac4j.version>
         <pac4j.version>3.2.0</pac4j.version>
+        <spring-core.version>5.0.9.RELEASE</spring-core.version>
     </properties>
 
     <dependencies>
@@ -141,14 +142,24 @@
                     <groupId>org.bouncycastle</groupId>
                     <artifactId>bcprov-jdk15on</artifactId>
                 </exclusion>
+                <exclusion>
+                    <groupId>org.springframework</groupId>
+                    <artifactId>spring-core</artifactId>
+                </exclusion>
             </exclusions>
         </dependency>
 
+        <!-- Upgrade pac4j-saml dependencies to avoid known CVEs -->
         <dependency>
             <groupId>org.bouncycastle</groupId>
             <artifactId>bcprov-jdk15on</artifactId>
             <version>${bcprov-jdk15on.version}</version>
         </dependency>
+        <dependency>
+            <groupId>org.springframework</groupId>
+            <artifactId>spring-core</artifactId>
+            <version>${spring-core.version}</version>
+        </dependency>
 
         <dependency>
             <groupId>junit</groupId>

knox git commit: KNOX-1513 - Upgrade spring-core to 5.0.9.RELEASE

Reply via email to