Skip to content

Commit

Permalink
updating vulnerable library versions (#1069)
Browse files Browse the repository at this point in the history 
* fix: esignet-service/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5953331
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8309135
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-7945490
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-2401816
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6435948
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-2390459
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-2970521
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-8383920
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-6252740
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3152153
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-7430175
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-8073090
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230373
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-3326459
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5862028
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6092281
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-5441321
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1728264
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6435950
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-5564390
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-2806360
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-6056527
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1048292
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6183062
- https://snyk.io/vuln/SNYK-JAVA-ORGGLASSFISH-1297098
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-6094942
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-6094943
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-6097492
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-6097493
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1080637
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-2414084
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-7687447
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8384234
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3016891
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8399269
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8399272
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8399278
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1080638
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3016888
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1061939
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1728266
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-3369687
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5959654
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5959972
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-6226862
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-1726923
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1728265
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-3146847
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-3035793
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-3097829
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3016889
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3113851
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230364
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230365
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230366
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230368

Signed-off-by: rajapandi.m <[email protected]>

* fix: oidc-ui/package.json & oidc-ui/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-CRYPTOJS-6028119
- https://snyk.io/vuln/SNYK-JS-JOSE-6419224

Signed-off-by: rajapandi.m <[email protected]>

---------

Signed-off-by: rajapandi.m <[email protected]>
Co-authored-by: snyk-bot <[email protected]>
  • Loading branch information
@rajapandi1234 @snyk-bot
rajapandi1234 and snyk-bot authored Dec 21, 2024
1 parent 48c2cf8 commit bf203a3
Show file tree
Hide file tree
Showing 3 changed files with 13 additions and 11 deletions.
2 changes: 1 addition & 1 deletion esignet-service/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,7 +45,7 @@
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-oauth2-resource-server</artifactId>
<version>3.2.7</version>
<version>3.2.12</version>
</dependency>
<dependency>
<groupId>org.postgresql</groupId>
Expand Down
18 changes: 10 additions & 8 deletions oidc-ui/package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 2 additions & 2 deletions oidc-ui/package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,12 +11,12 @@
"axios": "^1.7.3",
"buffer": "^6.0.3",
"cra-template": "1.1.3",
"crypto-js": "^4.1.1",
"crypto-js": "^4.2.0",
"i18next": "^21.10.0",
"i18next-browser-languagedetector": "^7.0.0",
"i18next-http-backend": "^2.0.1",
"iso-3166-1": "^2.1.1",
"jose": "^4.9.3",
"jose": "^4.15.5",
"qrcode": "^1.5.1",
"react": "^18.2.0",
"react-country-flag": "^3.1.0",
Expand Down

0 comments on commit bf203a3

Please sign in to comment.