From ce103be236ae5a580d77572443d344f49b83c50e Mon Sep 17 00:00:00 2001 From: Alex Porcelli Date: Mon, 11 Mar 2024 17:06:21 -0400 Subject: [PATCH 1/2] RHPAM-3709: upgrade maven dependencies to address CVE-2021-26291 --- kie-ci/pom.xml | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/kie-ci/pom.xml b/kie-ci/pom.xml index a28d49dd87d..3ba4b8f63f9 100644 --- a/kie-ci/pom.xml +++ b/kie-ci/pom.xml @@ -90,7 +90,7 @@ org.apache.maven - maven-aether-provider + maven-resolver-provider org.apache.maven.wagon @@ -103,7 +103,7 @@ - org.sonatype.plexus + org.codehaus.plexus plexus-sec-dispatcher @@ -115,20 +115,20 @@ plexus-utils - org.eclipse.aether - aether-api + org.apache.maven.resolver + maven-resolver-api - org.eclipse.aether - aether-impl + org.apache.maven.resolver + maven-resolver-impl - org.eclipse.aether - aether-connector-basic + org.apache.maven.resolver + maven-resolver-connector-basic - org.eclipse.aether - aether-transport-wagon + org.apache.maven.resolver + maven-resolver-transport-wagon org.eclipse.sisu @@ -171,7 +171,7 @@ - org.sonatype.plexus + org.codehaus.plexus plexus-cipher From e5e1326a637532923694de8cad75e3418c9cf418 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tibor=20Zim=C3=A1nyi?= Date: Fri, 22 Mar 2024 11:05:54 +0100 Subject: [PATCH 2/2] Exclude dependencies from test dependency. --- drools-examples-cdi/cdi-example-scopes/pom.xml | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/drools-examples-cdi/cdi-example-scopes/pom.xml b/drools-examples-cdi/cdi-example-scopes/pom.xml index 53fa898a209..e08b9e65d01 100644 --- a/drools-examples-cdi/cdi-example-scopes/pom.xml +++ b/drools-examples-cdi/cdi-example-scopes/pom.xml @@ -87,6 +87,14 @@ javax.inject javax.inject + + org.sonatype.plexus + plexus-cipher + + + org.sonatype.plexus + plexus-sec-dispatcher +