Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump up commons-compress to 1.26.1 to fix CVE #12627

Merged
merged 17 commits into from
Apr 3, 2024
Merged

Bump up commons-compress to 1.26.1 to fix CVE #12627

merged 17 commits into from
Apr 3, 2024

Commits on Apr 2, 2024

  1. Bump up commons-compress to 1.26.0 to fix CVE 

    Signed-off-by: Aman Khare <amkhar@amazon.com>
    @sandeshkr419
    Aman Khare authored and sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    19076ce View commit details
    Browse the repository at this point in the history

  2. Change log entry 

    Signed-off-by: Aman Khare <amkhar@amazon.com>
    @sandeshkr419
    Aman Khare authored and sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    c8e45cf View commit details
    Browse the repository at this point in the history

  3. Update ignoreMissingClasses 

    Signed-off-by: Aman Khare <amkhar@amazon.com>
    @sandeshkr419
    Aman Khare authored and sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    734cb98 View commit details
    Browse the repository at this point in the history

  4. Update commons-codec and commons-lang3 dependencies also 

    Signed-off-by: Aman Khare <amkhar@amazon.com>
    @sandeshkr419
    Aman Khare authored and sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    ff6ad98 View commit details
    Browse the repository at this point in the history

  5. Upgrade commons-codec to 1.16.1 

    Signed-off-by: Aman Khare <amkhar@amazon.com>
    @sandeshkr419
    Aman Khare authored and sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    c7b5a0b View commit details
    Browse the repository at this point in the history

  6. Add commons-io dependency in plugin-cli build.gradle 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    af53432 View commit details
    Browse the repository at this point in the history

  7. Revert "Update ignoreMissingClasses" 

    This reverts commit d92fbda.

Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    483743d View commit details
    Browse the repository at this point in the history

  8. Adding SHA for commons-io-2.15.1.jar 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    eb3f4d9 View commit details
    Browse the repository at this point in the history

  9. adding license, notice files for commons-io 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    837a7c1 View commit details
    Browse the repository at this point in the history

  10. Add missing classes for thirdPartyAudit 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    a0f58db View commit details
    Browse the repository at this point in the history

  11. Refactor 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    0ab41fe View commit details
    Browse the repository at this point in the history

  12. Test commit - to be reverted 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    50798ee View commit details
    Browse the repository at this point in the history

  13. Bump commons-compress to 1.26.1, tika to 2.9.1 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    788eebb View commit details
    Browse the repository at this point in the history

  14. Remove Charsets class from exclusion list - not missing 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    16c6977 View commit details
    Browse the repository at this point in the history

  15. Update tika to 2.9.2 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    86977e8 View commit details
    Browse the repository at this point in the history

  16. commons-io 2.16.0 

    Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    9e3ce43 View commit details
    Browse the repository at this point in the history

  17. Refactor commons-io dependency mentions to avoid manual version setti… 

    …ng/update

Signed-off-by: Sandesh Kumar <sandeshkr419@gmail.com>
    @sandeshkr419
    sandeshkr419 committed Apr 2, 2024
    Configuration menu
    Copy the full SHA
    54b8ef9 View commit details
    Browse the repository at this point in the history