Skip to content

Commit

Permalink
CCD-5474 : Fix CVE-2023-33202 : Bumped bouncycastle to address cve (#599
Browse files Browse the repository at this point in the history 
)

* Bumped bouncycastle to address cve

* reverted springframework version
  • Loading branch information
@dinesh1patel
dinesh1patel authored Jun 4, 2024
1 parent dc5ae13 commit cc4fc93
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
2 changes: 2 additions & 0 deletions build.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -134,6 +134,8 @@ dependencyManagement {
}

dependencies {

implementation group: 'org.bouncycastle', name: 'bcprov-jdk18on', version: '1.78'
compileOnly group: 'org.projectlombok', name: 'lombok', version: lombokVersion
annotationProcessor group: 'org.projectlombok', name: 'lombok', version: lombokVersion
implementation group: 'com.github.hmcts.java-logging', name: 'logging', version: reformLogging
Expand Down
1 change: 0 additions & 1 deletion dependency-check-suppressions.xml
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,6 @@
<?xml version="1.0" encoding="UTF-8"?><suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
<suppress>
<notes>Temporary Suppression
CVE-2023-33202 refer [Ticket]
CVE-2024-1597 refer [Ticket]
CVE-2023-34055 refer [Ticket]
CVE-2023-44487 refer [Ticket]
Expand Down

0 comments on commit cc4fc93

Please sign in to comment.