diff --git a/obp-api/pom.xml b/obp-api/pom.xml
index ab5fa16575..6f8c8ea525 100644
--- a/obp-api/pom.xml
+++ b/obp-api/pom.xml
@@ -209,7 +209,7 @@
org.elasticsearch
elasticsearch
- 7.17.1
+ 8.8.1
@@ -260,6 +260,11 @@
avro4s-core_${scala.version}
${avro.version}
+
+ org.apache.commons
+ commons-compress
+ 1.23.0
+
com.twitter
chill-akka_${scala.version}
diff --git a/obp-api/src/main/scala/code/search/search.scala b/obp-api/src/main/scala/code/search/search.scala
index b0c6bdf7e3..ea7c5cc4b9 100644
--- a/obp-api/src/main/scala/code/search/search.scala
+++ b/obp-api/src/main/scala/code/search/search.scala
@@ -17,8 +17,6 @@ import net.liftweb.json
import net.liftweb.json.JsonAST
import net.liftweb.json.JsonAST._
import net.liftweb.util.Helpers
-import org.elasticsearch.common.settings.Settings
-
import scala.concurrent.Await
import scala.concurrent.duration.Duration
import scala.util.control.NoStackTrace
@@ -303,7 +301,8 @@ class elasticsearchWarehouse extends elasticsearch {
val props = ElasticProperties(s"http://$esHost:${esPortTCP.toInt}")
var client: ElasticClient = null
if (APIUtil.getPropsAsBoolValue("allow_elasticsearch", false) && APIUtil.getPropsAsBoolValue("allow_elasticsearch_warehouse", false) ) {
- val settings = Settings.builder().put("cluster.name", APIUtil.getPropsValue("es.cluster.name", "elasticsearch")).build()
+ //this is not used in the current code, first comment to solve the vulnerability issue
+ // val settings = Settings.builder().put("cluster.name", APIUtil.getPropsValue("es.cluster.name", "elasticsearch")).build()
client = ElasticClient(JavaClient(props))
}
}