(tika) branch main updated: TIKA-4326: remove exclusions that are no longer needed

[tilman]

This is an automated email from the ASF dual-hosted git repository.

tilman pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tika.git


The following commit(s) were added to refs/heads/main by this push:
     new 36e877a65 TIKA-4326: remove exclusions that are no longer needed
36e877a65 is described below

commit 36e877a650ce4e8295b1c306eab55c3959e621da
Author: Tilman Hausherr <til...@apache.org>
AuthorDate: Tue Nov 5 16:08:39 2024 +0100

    TIKA-4326: remove exclusions that are no longer needed
---
 tika-parent/pom.xml | 24 ------------------------
 1 file changed, 24 deletions(-)

diff --git a/tika-parent/pom.xml b/tika-parent/pom.xml
index 278fc1786..f96193b26 100644
--- a/tika-parent/pom.xml
+++ b/tika-parent/pom.xml
@@ -1125,17 +1125,6 @@
               <artifactId>jetty-http</artifactId>
               <version>11.0.24</version>
             </coordinate>
-            <coordinate>
-              <groupId>io.netty</groupId>
-              <artifactId>netty-handler</artifactId>
-              <version>${netty.version}</version>
-            </coordinate>
-            <!-- these are used by the nlp-module -->
-            <coordinate>
-              <groupId>org.apache.lucene</groupId>
-              <artifactId>lucene-queryparser</artifactId>
-              <version>4.0.0</version>
-            </coordinate>
             <!-- this one is used in tika-example -->
             <coordinate>
               <!-- sonatype: 
https://github.com/apache/commons-dbcp/commit/a4c5af0da1de3a7f50c72fc7edaa1f653ca276dd
 -->
@@ -1150,14 +1139,6 @@
               <artifactId>h2</artifactId>
               <version>${h2.version}</version>
             </coordinate>
-            <!-- CVE-2023-39913: Uima is used because ctakes is used in the
-            natural language process module. Serialization is only on data 
that is configured in
-            tika-config.xml. We don't think we'd be vulnerable to crafted user 
input. -->
-            <coordinate>
-              <groupId>org.apache.uima</groupId>
-              <artifactId>uimaj-core</artifactId>
-              <version>3.4.1</version>
-            </coordinate>
             <!-- provided dependency brought in by 
org.deeplearning4j:deeplearning4j-utility-iterators -->
             <coordinate>
               <groupId>org.threeten</groupId>
@@ -1171,11 +1152,6 @@
               <artifactId>threetenbp</artifactId>
               <version>1.7.0</version>
             </coordinate>
-            <coordinate>
-              <groupId>joda-time</groupId>
-              <artifactId>joda-time</artifactId>
-              <version>2.12.7</version>
-            </coordinate>
             <!-- while waiting for 1.14.4 to appear on maven central, see
                  
https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
             -->