diff --git a/owasp/suppressions.xml b/owasp/suppressions.xml index c8703cc..2680900 100644 --- a/owasp/suppressions.xml +++ b/owasp/suppressions.xml @@ -18,5 +18,16 @@ CVE is matching for Spring Framework up to 5.3.20, but we have 5.3.21 CVE-2016-1000027 + + + False Positive matches + CVE-2022-31514 + CVE-2022-2393 + + + + Keycloak Update is currentlyn not possible + CVE-2022-1245 + - \ No newline at end of file + diff --git a/pom.xml b/pom.xml index cb651cb..e043302 100644 --- a/pom.xml +++ b/pom.xml @@ -59,14 +59,14 @@ org.springframework.boot spring-boot-dependencies - 2.7.1 + 2.7.2 pom import org.springframework.cloud spring-cloud-dependencies - 2021.0.1 + 2021.0.3 pom import @@ -74,12 +74,6 @@ org.springframework.cloud spring-cloud-starter-openfeign 3.1.3 - - - commons-io - commons-io - - org.springdoc @@ -105,7 +99,7 @@ net.javacrumbs.shedlock shedlock-provider-jdbc-template - 4.37.0 + 4.39.0 @@ -150,7 +144,7 @@ org.liquibase liquibase-core - 4.12.0 + 4.14.0 com.h2database @@ -239,7 +233,7 @@ com.amazonaws aws-java-sdk-s3 - 1.12.250 + 1.12.272 @@ -251,7 +245,7 @@ com.sap.cloud.sdk.cloudplatform scp-cf - 3.70.0 + 3.73.0 com.sap.hcp.cf.logging @@ -274,7 +268,7 @@ org.springframework.boot spring-boot-maven-plugin - 2.7.1 + 2.7.2