Skip to content

Commit

Permalink
Upgrade Maven dependencies and ossindex-service-client
Browse files Browse the repository at this point in the history 
* Upgrades vulnerable transitive dependency plexus-utils from 2.0.4
  to version 3.0.24
  • Loading branch information
Benjamin Krahl committed Jan 4, 2022
1 parent 7334867 commit dacf3cb
Show file tree
Hide file tree
Showing 3 changed files with 5 additions and 9 deletions.
2 changes: 1 addition & 1 deletion common/src/main/java/org/sonatype/ossindex/maven/common/ComponentReportAssistant.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -124,7 +124,7 @@ public ComponentReportResult request(final ComponentReportRequest request) {
*/
@VisibleForTesting
static PackageUrl packageUrl(final Artifact artifact) {
return new PackageUrl.Builder()
return PackageUrl.builder()
.type("maven")
.namespace(artifact.getGroupId())
.name(artifact.getArtifactId())
Expand Down
5 changes: 0 additions & 5 deletions enforcer-rules/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,11 +27,6 @@
<name>${project.groupId}:${project.artifactId}</name>
<packaging>jar</packaging>

<properties>
<!-- maven-enforcer-plugin relies on older maven implementations -->
<apache-maven.version>3.0</apache-maven.version>
</properties>

<dependencies>
<dependency>
<groupId>org.sonatype.ossindex.maven</groupId>
Expand Down
7 changes: 4 additions & 3 deletions pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -95,7 +95,8 @@
<maven.compiler.source>1.8</maven.compiler.source>
<maven.compiler.target>1.8</maven.compiler.target>

<apache-maven.version>3.0</apache-maven.version>
<apache-maven.version>3.5.0</apache-maven.version>
<maven.plugin-annotations.version>3.6.0</maven.plugin-annotations.version>
<jackson.version>2.9.10</jackson.version>
<dionysus.version>1.0.3</dionysus.version>

Expand Down Expand Up @@ -137,7 +138,7 @@
<dependency>
<groupId>org.sonatype.ossindex</groupId>
<artifactId>ossindex-service-client</artifactId>
<version>1.1.1</version>
<version>1.8.1</version>
</dependency>

<dependency>
Expand All @@ -149,7 +150,7 @@
<dependency>
<groupId>org.apache.maven.plugin-tools</groupId>
<artifactId>maven-plugin-annotations</artifactId>
<version>${apache-maven.version}</version>
<version>${maven.plugin-annotations.version}</version>
</dependency>

<dependency>
Expand Down

0 comments on commit dacf3cb

Please # to comment.