From c8ebaaff54a6f38e03899e0f9b705291f898a05b Mon Sep 17 00:00:00 2001 From: "QSL\\SumathiT" Date: Fri, 17 Jan 2025 14:01:57 -0800 Subject: [PATCH 1/2] Security: Dependabot findings. --- .github/workflows/on.pr.yml | 3 ++- api/pom.xml | 8 ++++---- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/.github/workflows/on.pr.yml b/.github/workflows/on.pr.yml index 10b7f012..6ac78b1f 100644 --- a/.github/workflows/on.pr.yml +++ b/.github/workflows/on.pr.yml @@ -21,8 +21,9 @@ jobs: with: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis - name: Set up JDK 18 - uses: actions/setup-java@v1 + uses: actions/setup-java@v4 with: + distribution: 'corretto' java-version: 18 - uses: actions/cache@v4 with: diff --git a/api/pom.xml b/api/pom.xml index 6f793db5..b9ab157c 100644 --- a/api/pom.xml +++ b/api/pom.xml @@ -41,9 +41,9 @@ ${java.version} 1.5.2.Final 1.6.9 - 4.20.0 + 4.39.0 2.11.0 - 30.1.1-jre + 33.4.0-jre 2.18.0 1.7.1 @@ -278,7 +278,7 @@ org.hibernate.orm.tooling hibernate-enhance-maven-plugin - 6.1.1.Final + 6.6.4.Final org.springframework.boot @@ -368,7 +368,7 @@ org.hibernate.orm.tooling hibernate-enhance-maven-plugin - 6.1.1.Final + 6.6.4.Final From e578d21b93056fdbfc88d04e93b0dc27a631ddb8 Mon Sep 17 00:00:00 2001 From: "QSL\\SumathiT" Date: Wed, 22 Jan 2025 13:54:32 -0800 Subject: [PATCH 2/2] Security: Dependabot findings. --- api/pom.xml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/api/pom.xml b/api/pom.xml index b9ab157c..d21d2330 100644 --- a/api/pom.xml +++ b/api/pom.xml @@ -39,12 +39,12 @@ 3.10.1 ${java.version} ${java.version} - 1.5.2.Final - 1.6.9 + 1.6.3 + 1.6.11 4.39.0 2.11.0 33.4.0-jre - 2.18.0 + 2.24.3 1.7.1