This is an automated email from the ASF dual-hosted git repository.
fanningpj pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/pekko.git
The following commit(s) were added to refs/heads/main by this push:
new 42ea8099b5 add bcprov test dependency due to CVE (#1313)
42ea8099b5 is described below
commit 42ea8099b56bfdc4b3b232984eff025ae665ee9f
Author: PJ Fanning <[email protected]>
AuthorDate: Tue May 7 11:57:02 2024 +0100
add bcprov test dependency due to CVE (#1313)
* add bcprov test dependency due to CVE
* Update Dependencies.scala
---
project/Dependencies.scala | 3 +++
1 file changed, 3 insertions(+)
diff --git a/project/Dependencies.scala b/project/Dependencies.scala
index 356c32685d..5670e9bc83 100644
--- a/project/Dependencies.scala
+++ b/project/Dependencies.scala
@@ -118,6 +118,7 @@ object Dependencies {
}
object TestDependencies {
+ val bcprov = "org.bouncycastle" % "bcprov-jdk18on" % "1.78.1" % Test
val commonsIo = "commons-io" % "commons-io" % "2.16.1" % Test
val commonsCodec = "commons-codec" % "commons-codec" % "1.17.0" % Test
val commonsCompress = "org.apache.commons" % "commons-compress" %
"1.26.1" % Test
@@ -146,10 +147,12 @@ object Dependencies {
// in-memory filesystem for file related tests
val jimfs = "com.google.jimfs" % "jimfs" % "1.3.0" % Test
+ // the extra dependency overrides for bcprov, commonsCompress and guava
should be reviewed - https://github.com/apache/pekko/issues/1317
val dockerClientVersion = "3.3.6"
val dockerClient = Seq(
"com.github.docker-java" % "docker-java-core" % dockerClientVersion %
Test,
"com.github.docker-java" % "docker-java-transport-httpclient5" %
dockerClientVersion % Test,
+ TestDependencies.bcprov,
TestDependencies.commonsCompress,
TestDependencies.guava)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
