Skip to content

Commit

Permalink
chore(dependencies): remove dependency on groovy-all where straightfo…
Browse files Browse the repository at this point in the history 
…rward (#5840)

with a specific goal to get org.testng:testng:7.4.0 out of shipping code, since it's vulnerable to
CVE-2022-4065.

Note: groovy-all and testng remain in clouddriver-yandex, but they're gone (besides test
configurations) elsewhere.
  • Loading branch information
@dbyron-sf
dbyron-sf authored Dec 9, 2022
1 parent 86b312e commit cd5a7ff
Show file tree
Hide file tree
Showing 29 changed files with 36 additions and 28 deletions.
2 changes: 1 addition & 1 deletion cats/cats-core/cats-core.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ dependencies {

implementation "org.slf4j:slf4j-api"
implementation "com.fasterxml.jackson.core:jackson-annotations"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "com.google.guava:guava"

compileOnly "org.projectlombok:lombok"
Expand Down
1 change: 1 addition & 0 deletions cats/cats-redis/cats-redis.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@ dependencies {
annotationProcessor "org.projectlombok:lombok"
testAnnotationProcessor "org.projectlombok:lombok"

implementation "org.codehaus.groovy:groovy"
implementation "com.fasterxml.jackson.core:jackson-databind"
implementation "io.spinnaker.kork:kork-jedis"
implementation "com.github.ben-manes.caffeine:guava"
Expand Down
2 changes: 1 addition & 1 deletion cats/cats-test/cats-test.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ tasks.compileGroovy.enabled = true

dependencies {
implementation project(":cats:cats-core")
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"

implementation "org.springframework.boot:spring-boot-starter-test"
implementation "org.spockframework:spock-core"
Expand Down
2 changes: 1 addition & 1 deletion cats/cats.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,6 @@ subprojects {
dependencies {
implementation project(":clouddriver-api")

implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
}
}
2 changes: 1 addition & 1 deletion clouddriver-alicloud/clouddriver-alicloud.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ dependencies {
implementation 'com.aliyun:aliyun-java-sdk-ess:2.3.2'
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.apache.commons:commons-lang3"

testImplementation "cglib:cglib-nodep"
Expand Down
3 changes: 2 additions & 1 deletion clouddriver-appengine/clouddriver-appengine.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,8 @@ dependencies {
implementation "com.squareup.retrofit:retrofit"
implementation "commons-io:commons-io"
implementation "org.apache.commons:commons-compress:1.21"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.codehaus.groovy:groovy-json"
implementation "org.eclipse.jgit:org.eclipse.jgit:5.7.0.202003110725-r"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-artifacts/clouddriver-artifacts.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -51,7 +51,7 @@ dependencies {
implementation "org.apache.commons:commons-lang3"
implementation "org.apache.ivy:ivy:2.4.0"
implementation "org.apache.maven:maven-resolver-provider:3.5.4"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"

Expand Down
2 changes: 1 addition & 1 deletion clouddriver-aws/clouddriver-aws.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,7 @@ dependencies {
implementation "io.reactivex:rxjava"
implementation "org.apache.httpcomponents:httpclient"
implementation "org.apache.httpcomponents:httpcore"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
implementation 'com.aestasit.infrastructure.sshoogr:sshoogr:0.9.25'
Expand Down
3 changes: 2 additions & 1 deletion clouddriver-azure/clouddriver-azure.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ dependencies {
implementation "io.spinnaker.fiat:fiat-core:$fiatVersion"
implementation "io.spinnaker.kork:kork-exceptions"
implementation "io.spinnaker.kork:kork-moniker"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
implementation "com.azure.resourcemanager:azure-resourcemanager:2.19.0"
Expand All @@ -22,6 +22,7 @@ dependencies {
implementation "com.google.guava:guava:31.1-jre"

testImplementation "cglib:cglib-nodep"
testImplementation "org.junit.jupiter:junit-jupiter-api"
testImplementation "org.objenesis:objenesis"
testImplementation "org.spockframework:spock-core"
testImplementation "org.spockframework:spock-spring"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-cloudfoundry/clouddriver-cloudfoundry.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,7 @@ dependencies {
annotationProcessor "org.projectlombok:lombok"
testAnnotationProcessor "org.projectlombok:lombok"

implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"

implementation "io.spinnaker.fiat:fiat-core:$fiatVersion"
implementation "org.apache.commons:commons-lang3"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-cloudrun/clouddriver-cloudrun.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ dependencies {
implementation "com.squareup.retrofit:retrofit"
implementation "commons-io:commons-io"
implementation "org.apache.commons:commons-compress:1.20"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.eclipse.jgit:org.eclipse.jgit:5.7.0.202003110725-r"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
Expand Down
3 changes: 2 additions & 1 deletion clouddriver-consul/clouddriver-consul.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,8 @@ dependencies {

implementation "com.squareup.okhttp:okhttp"
implementation "com.squareup.retrofit:retrofit"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.codehaus.groovy:groovy-json"
implementation "org.springframework.boot:spring-boot-starter-web"

testImplementation "cglib:cglib-nodep"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-core-tck/clouddriver-core-tck.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,5 +5,5 @@ dependencies {
implementation "junit:junit"
implementation "org.apache.commons:commons-lang3"
implementation "org.assertj:assertj-core"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
}
3 changes: 2 additions & 1 deletion clouddriver-core/clouddriver-core.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,7 +44,8 @@ dependencies {
implementation "io.reactivex:rxjava"
implementation "net.jodah:failsafe:1.0.4"
implementation "org.apache.commons:commons-exec"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.codehaus.groovy:groovy-templates"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "redis.clients:jedis"
implementation "org.jooq:jooq"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-dcos/clouddriver-dcos.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ dependencies {
implementation "io.spinnaker.fiat:fiat-core:$fiatVersion"
implementation "io.spinnaker.kork:kork-moniker"
implementation "joda-time:joda-time:2.10.1"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
implementation 'com.cerner.marathon:marathon-client:0.6.3'
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-docker/clouddriver-docker.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ dependencies {
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
implementation "org.springframework.cloud:spring-cloud-context"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "com.google.guava:guava"
implementation "com.netflix.spectator:spectator-api"
implementation "com.squareup.okhttp:okhttp"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-ecs/clouddriver-ecs.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,7 +44,7 @@ dependencies {
implementation "org.apache.commons:commons-lang3"
implementation "org.apache.httpcomponents:httpclient"
implementation "org.apache.httpcomponents:httpcore"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-starter-test"
implementation "org.springframework.boot:spring-boot-starter-web"

Expand Down
2 changes: 1 addition & 1 deletion clouddriver-elasticsearch/clouddriver-elasticsearch.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@ dependencies {
implementation "io.spinnaker.kork:kork-retrofit"
implementation "io.spinnaker.kork:kork-security"
implementation "com.squareup.retrofit:retrofit"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.elasticsearch:elasticsearch"
implementation "org.springframework.boot:spring-boot-starter-web"

Expand Down
2 changes: 1 addition & 1 deletion clouddriver-eureka/clouddriver-eureka.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ dependencies {
implementation "com.amazonaws:aws-java-sdk"
implementation "com.squareup.retrofit:converter-jackson"
implementation "com.squareup.retrofit:retrofit"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-starter-web"

testImplementation "cglib:cglib-nodep"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-google-common/clouddriver-google-common.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ dependencies {
implementation "com.netflix.spectator:spectator-api"
implementation "io.spinnaker.fiat:fiat-api:$fiatVersion"
implementation "io.spinnaker.fiat:fiat-core:$fiatVersion"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.slf4j:slf4j-api"
implementation "org.springframework.security:spring-security-config"
implementation "org.springframework.security:spring-security-core"
Expand Down
3 changes: 2 additions & 1 deletion clouddriver-google/clouddriver-google.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,8 @@ dependencies {
annotationProcessor "org.projectlombok:lombok"
testAnnotationProcessor "org.projectlombok:lombok"

implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.codehaus.groovy:groovy-json"
implementation "org.apache.commons:commons-lang3"
implementation ("com.google.apis:google-api-services-compute:beta-rev20201102-1.30.10") {
force = true
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-huaweicloud/clouddriver-huaweicloud.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ dependencies {
}
implementation "org.glassfish.jersey.core:jersey-client:2.22.1"
implementation "org.glassfish.jersey.media:jersey-media-json-jackson:2.11"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
implementation 'org.apache.commons:commons-lang3'
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-kubernetes/clouddriver-kubernetes.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -61,7 +61,7 @@ dependencies {
annotationProcessor "org.projectlombok:lombok"
testAnnotationProcessor "org.projectlombok:lombok"

implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"

implementation "com.google.code.findbugs:jsr305"
implementation "com.google.guava:guava"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-lambda/clouddriver-lambda.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ dependencies {
implementation "org.apache.httpcomponents:httpclient"
implementation "org.apache.httpcomponents:httpcore"
implementation "org.apache.commons:commons-compress:1.20"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-starter-web"
implementation "com.squareup.okhttp:okhttp"
implementation "com.squareup.okhttp:okhttp-apache"
Expand Down
3 changes: 2 additions & 1 deletion clouddriver-oracle/clouddriver-oracle.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,11 +18,12 @@ dependencies {
implementation "com.oracle.oci.sdk:oci-java-sdk-identity"
implementation "com.oracle.oci.sdk:oci-java-sdk-loadbalancer"
implementation "com.oracle.oci.sdk:oci-java-sdk-objectstorage"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.springframework.boot:spring-boot-starter-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"

testImplementation "cglib:cglib-nodep"
testImplementation "org.codehaus.groovy:groovy-all"
testImplementation "org.objenesis:objenesis"
testImplementation "org.spockframework:spock-core"
testImplementation "org.spockframework:spock-spring"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-security/clouddriver-security.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@ dependencies {
implementation "io.spinnaker.fiat:fiat-api:$fiatVersion"
implementation "io.spinnaker.fiat:fiat-core:$fiatVersion"
implementation "io.spinnaker.kork:kork-core"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.slf4j:jcl-over-slf4j"
implementation "org.springframework.boot:spring-boot-starter-web"
implementation "com.github.ben-manes.caffeine:guava"
Expand Down
3 changes: 2 additions & 1 deletion clouddriver-titus/clouddriver-titus.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,8 @@ dependencies {
implementation "io.grpc:grpc-netty-shaded:$grpcVersion"
implementation "io.grpc:grpc-protobuf:$grpcVersion"
implementation "io.grpc:grpc-stub:$grpcVersion"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.codehaus.groovy:groovy-json"
implementation "org.slf4j:slf4j-api"
implementation "org.springframework.boot:spring-boot-actuator"
implementation "org.springframework.boot:spring-boot-starter-web"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-web/clouddriver-web.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ dependencies {
implementation "commons-io:commons-io"
implementation "io.reactivex:rxjava"
implementation "io.swagger:swagger-annotations"
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy"
implementation "org.slf4j:slf4j-api"
implementation "org.springframework.boot:spring-boot-starter-actuator"
implementation "org.springframework.boot:spring-boot-starter-json"
Expand Down
2 changes: 1 addition & 1 deletion clouddriver-yandex/clouddriver-yandex.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@ dependencies {
compile("io.opencensus:opencensus-contrib-grpc-metrics:0.21.0") {
force = true
}
implementation "org.codehaus.groovy:groovy-all"
implementation "org.codehaus.groovy:groovy-all" // for at least org.apache.groovy.datetime.extensions.DateTimeExtensions
implementation "org.apache.commons:commons-lang3"
implementation "com.netflix.frigga:frigga"
implementation "com.netflix.spectator:spectator-api"
Expand Down

0 comments on commit cd5a7ff

Please sign in to comment.