Skip to content

Commit

Permalink
Upgrade transitive dependencies of retrofit to address vulns
Browse files Browse the repository at this point in the history
  • Loading branch information
@chadlwilson
chadlwilson committed May 17, 2024
1 parent 7edf2f0 commit c7db023
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 0 deletions.
1 change: 1 addition & 0 deletions dependencies.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,7 @@ final Map<String, String> libraries = [
junitJupiterApi : 'org.junit.jupiter:junit-jupiter-api:5.10.2',
lombok : 'org.projectlombok:lombok:1.18.32',
mockito : 'org.mockito:mockito-core:5.12.0',
okio : 'com.squareup.okio:okio:1.17.6',
pluginApi : 'cd.go.plugin:go-plugin-api:24.1.0',
reflections : 'org.reflections:reflections:0.10.2',
retrofit : 'com.squareup.retrofit2:retrofit:2.11.0',
Expand Down
4 changes: 4 additions & 0 deletions providers/build.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,10 @@ dependencies {
implementation project.deps.commonsLang
implementation project.deps.retrofit
implementation project.deps.retrofitJacksonConv
constraints {
// Force upgrade transitive dependencies of fabric client to versions without vulnerabilities
implementation project.deps.okio
}
implementation project.deps.validateApi

testImplementation project.deps.junitJupiterApi
Expand Down

0 comments on commit c7db023

Please sign in to comment.