Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[7.67.x-blue] RHPAM-3709: upgrade maven dependencies to address CVE-2021-26291 #1415

Merged
merged 2 commits into from
Apr 3, 2024
Merged

[7.67.x-blue] RHPAM-3709: upgrade maven dependencies to address CVE-2021-26291 #1415

merged 2 commits into from
Apr 3, 2024

Conversation

baldimir
Copy link
Member

Replaces #1414

@baldimir baldimir mentioned this pull request Mar 21, 2024
Closed
mareknovotny
mareknovotny approved these changes Mar 22, 2024
View reviewed changes
Copy link
Member

@mareknovotny mareknovotny left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm but please include in every PR related to this cross repo change the list of PRs according to PR template ;)

@mareknovotny mareknovotny mentioned this pull request Mar 22, 2024
Merged
@baldimir
Copy link
Member Author

jenkins retest this

@mareknovotny
Copy link
Member

mareknovotny commented Mar 26, 2024
edited
Loading

here were enforcer error about duplicated classes in uberfire-metadata-backend-infinispan

[2024-03-26T09:52:45.395Z] [WARNING] Rule 0: org.apache.maven.plugins.enforcer.BanDuplicateClasses failed with message:
[2024-03-26T09:52:45.395Z] Duplicate classes found:
[2024-03-26T09:52:45.395Z] 
[2024-03-26T09:52:45.395Z]   Found in:
[2024-03-26T09:52:45.395Z]     org.codehaus.plexus:plexus-cipher:jar:2.0:test
[2024-03-26T09:52:45.395Z]     org.sonatype.plexus:plexus-cipher:jar:1.4:test
[2024-03-26T09:52:45.395Z]   Duplicate classes:
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/cipher/PlexusCipherException.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/cipher/PlexusCipher.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/cipher/Base64.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/cipher/DefaultPlexusCipher.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/cipher/PBECipher.class
[2024-03-26T09:52:45.395Z] 
[2024-03-26T09:52:45.395Z]   Found in:
[2024-03-26T09:52:45.395Z]     org.codehaus.plexus:plexus-sec-dispatcher:jar:2.0:test
[2024-03-26T09:52:45.395Z]     org.sonatype.plexus:plexus-sec-dispatcher:jar:1.3:test
[2024-03-26T09:52:45.395Z]   Duplicate classes:
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/DefaultSecDispatcher.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/model/io/xpp3/SecurityConfigurationXpp3Reader.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/SecUtil.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/model/SettingsSecurity.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/model/Config.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/SecDispatcherException.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/model/io/xpp3/SecurityConfigurationXpp3Writer.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/PasswordDecryptor.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/SecDispatcher.class
[2024-03-26T09:52:45.395Z]     org/sonatype/plexus/components/sec/dispatcher/model/ConfigProperty.class

i didn't notice the new commit to solve that ;), but just for the record i am keeping my comment here

@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Mar 26, 2024

Quality Gate Failed Quality Gate failed

Failed conditions
0.0% Coverage on New Code (required ≥ 80%)

See analysis details on SonarCloud

@mareknovotny mareknovotny merged commit f574261 into kiegroup:7.67.x-blue Apr 3, 2024
3 of 5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jstastny-cz jstastny-cz jstastny-cz approved these changes

@mareknovotny mareknovotny mareknovotny approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@baldimir @mareknovotny @jstastny-cz @porcelli