Skip to content
This repository has been archived by the owner on Jun 25, 2024. It is now read-only.

Commit

Permalink
Merge pull request #20 from patientsknowbest/PHRZ-831
Browse files Browse the repository at this point in the history 
Update to use latest PKB Pulsar version PHRZ-831
  • Loading branch information
@karsaig
karsaig authored May 28, 2020
2 parents 6055689 + 9dfaa40 commit 7315861
Show file tree
Hide file tree
Showing 2 changed files with 187 additions and 1 deletion.
3 changes: 2 additions & 1 deletion pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,7 +46,7 @@
<changelist>-SNAPSHOT</changelist>
<javax.servlet-api.version>4.0.1</javax.servlet-api.version>
<javax.inject.version>1</javax.inject.version>
<phr-pulsar.version>7-5b1736a-64173</phr-pulsar.version>
<phr-pulsar.version>8-5b37c53-65399</phr-pulsar.version>
</properties>

<modules>
Expand Down Expand Up @@ -194,6 +194,7 @@
<excludes>
<exclude>org.springframework</exclude>
</excludes>
<suppressionFile>suppression.xml</suppressionFile>
</configuration>
</plugin>
<plugin>
Expand Down
185 changes: 185 additions & 0 deletions suppression.xml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,185 @@
<?xml version="1.0" encoding="UTF-8"?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: pulsar-client-2.5.2.jar (shaded: com.typesafe.netty:netty-reactive-streams:2.0.0)
]]></notes>
<sha1>d31003acb1fa57f83078aaf6224b463c1a69f077</sha1>
<cpe>cpe:/a:netty:netty</cpe>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: pulsar-client-2.5.2.jar (shaded: io.netty:netty-tcnative-boringssl-static:2.0.30.Final)
]]></notes>
<sha1>ff550b80e833c94ed8e23726ec95d193363f098c</sha1>
<cpe>cpe:/a:netty:netty</cpe>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: protobuf-shaded-2.1.0-incubating.jar (shaded: com.google.protobuf:protobuf-java:2.4.1)
]]></notes>
<sha1>d25481cf27aab12be6e7ba11eca5eea3f0bc4be2</sha1>
<vulnerabilityName>CVE-2015-5237</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-14540</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-14892</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-14893</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-16335</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<packageUrl regex="true">^pkg:maven/com\.fasterxml\.jackson\.core/jackson\-databind@.*$</packageUrl>
<vulnerabilityName>CVE-2019-16942</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-16942</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-16943</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-17267</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-17531</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2019-20330</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-10672</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-10673</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-10968</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-10969</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-11111</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-11112</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-11113</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-11619</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-11620</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-8840</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-9546</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-9547</vulnerabilityName>
</suppress>
<suppress until="2020-08-01Z">
<notes><![CDATA[
file name: jackson-databind-2.9.9.3.jar
]]></notes>
<sha1>68ddd453458765757fd3ffca9437f9a42d91003e</sha1>
<vulnerabilityName>CVE-2020-9548</vulnerabilityName>
</suppress>
</suppressions>

0 comments on commit 7315861

Please sign in to comment.