forked from clojure/tools.deps.alpha
-
Notifications
You must be signed in to change notification settings - Fork 10
/
deps.edn
42 lines (39 loc) · 2.21 KB
/
deps.edn
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
{:paths ["src/main/clojure" "src/main/resources"]
:deps {
org.clojure/clojure {:mvn/version "1.10.3"}
org.apache.maven.resolver/maven-resolver-api {:mvn/version "1.8.2"}
org.apache.maven.resolver/maven-resolver-spi {:mvn/version "1.8.2"}
org.apache.maven.resolver/maven-resolver-impl {:mvn/version "1.8.2"}
org.apache.maven.resolver/maven-resolver-util {:mvn/version "1.8.2"}
org.apache.maven.resolver/maven-resolver-connector-basic {:mvn/version "1.8.2"}
org.apache.maven.resolver/maven-resolver-transport-file {:mvn/version "1.8.2"}
org.apache.maven.resolver/maven-resolver-transport-http {:mvn/version "1.8.2"}
org.apache.maven/maven-resolver-provider {:mvn/version "3.8.8"}
org.apache.maven/maven-core {:mvn/version "3.8.8" :exclusions [com.google.guava/guava]}
; com.google.guava/guava {:mvn/version "33.0.0-jre"} ;; update transitive dep due to CVE-2020-8908
org.clojure/data.xml {:mvn/version "0.2.0-alpha9"}
org.clojure/tools.gitlibs {:mvn/version "2.6.206"}
org.clojure/tools.cli {:mvn/version "1.1.230"}
com.cognitect.aws/api {:mvn/version "0.8.692" :exclusions [org.eclipse.jetty/jetty-http org.eclipse.jetty/jetty-client org.eclipse.jetty/jetty-util]} ;; override for CVEs
org.eclipse.jetty/jetty-http {:mvn/version "9.4.53.v20231009"}
org.eclipse.jetty/jetty-client {:mvn/version "9.4.53.v20231009"}
org.eclipse.jetty/jetty-util {:mvn/version "9.4.53.v20231009"}
com.cognitect.aws/endpoints {:mvn/version "1.1.12.718"}
com.cognitect.aws/s3 {:mvn/version "868.2.1580.0"}
javax.inject/javax.inject {:mvn/version "1"}
}
:aliases {
:test {:extra-paths ["src/test/clojure"]}
;; clj -M:lint
:lint {:replace-deps {clj-kondo/clj-kondo {:mvn/version "2024.05.24"}}
:main-opts ["-m" "clj-kondo.main" "--lint" "src/main/clojure" "--lint" "src/test/clojure"]}
;; clj -M:cve
:cve {:extra-deps {io.github.clj-holmes/clj-watson {:git/tag "v5.1.2" :git/sha "c2349f5"}}
:extra-paths [".clj-watson"]
:jvm-opts ["--illegal-access=deny"]
:main-opts ["-m" "clj-watson.cli" "scan" "-p" "deps.edn"]}
;; clj -M:outdated
:outdated {:extra-deps {com.github.liquidz/antq {:mvn/version "RELEASE"}}
:main-opts ["-m" "antq.core"]}
}
}