(tapestry-5) branch javax updated: TAP5-2794: upgrade commons-io and commons-fileupload

Sat, 26 Oct 2024 06:10:48 -0700 

This is an automated email from the ASF dual-hosted git repository.

thiagohp pushed a commit to branch javax
in repository https://gitbox.apache.org/repos/asf/tapestry-5.git


The following commit(s) were added to refs/heads/javax by this push:
     new 5e2af49ed TAP5-2794: upgrade commons-io and commons-fileupload
5e2af49ed is described below

commit 5e2af49edef5ccfca9e578e38ce908ea0e36a8cb
Author: Thiago H. de Paula Figueiredo <thi...@arsmachina.com.br>
AuthorDate: Sat Oct 26 10:10:33 2024 -0300

    TAP5-2794: upgrade commons-io and commons-fileupload
    
    dependencies so we don't use versions with known security
    vulnerabilities.
---
 build.gradle                 | 3 ++-
 tapestry-http/build.gradle   | 2 +-
 tapestry-upload/build.gradle | 4 ++--
 3 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/build.gradle b/build.gradle
index 93c7152a1..e38c40ed1 100755
--- a/build.gradle
+++ b/build.gradle
@@ -25,6 +25,7 @@ project.ext.versions = [
     jsonschemaGenerator: "4.20.0",
     junitJupiter: "5.10.2",
     commonsLang: "3.4",
+    commonsIo: "2.17.0",
     webdriverManager: "5.3.1"
 ]
 
@@ -410,7 +411,7 @@ subprojects {
         resolutionStrategy.force "antlr:antlr:2.7.7",
             "cglib:cglib-nodep:2.2",
             "commons-codec:commons-codec:1.10",
-            "commons-io:commons-io:2.4",
+            "commons-io:commons-io:${versions.commonsIo}",
             "commons-logging:commons-logging:1.1.3",
             "hsqldb:hsqldb:2.2.8",
             "org.antlr:antlr-runtime:3.5.2",
diff --git a/tapestry-http/build.gradle b/tapestry-http/build.gradle
index 60d888b46..355472dc9 100644
--- a/tapestry-http/build.gradle
+++ b/tapestry-http/build.gradle
@@ -15,7 +15,7 @@ dependencies {
     provided "javax.servlet:javax.servlet-api:${versions.servletapi}"
 
     implementation "commons-codec:commons-codec:1.10"
-    implementation "commons-io:commons-io:2.11.0"
+    implementation "commons-io:commons-io:${versions.commonsIo}"
 
     testRuntimeOnly "org.hsqldb:hsqldb:1.8.0.10"
 
diff --git a/tapestry-upload/build.gradle b/tapestry-upload/build.gradle
index 7026fabd9..99d15479c 100644
--- a/tapestry-upload/build.gradle
+++ b/tapestry-upload/build.gradle
@@ -2,8 +2,8 @@ description = "File Upload component, with supporting services"
 
 dependencies {
   implementation project(':tapestry-core')
-  api "commons-fileupload:commons-fileupload:1.3.2"
-  implementation "commons-io:commons-io:2.4"
+  api "commons-fileupload:commons-fileupload:1.5"
+  implementation "commons-io:commons-io:${versions.commonsIo}"
   provided "javax.servlet:javax.servlet-api:${versions.servletapi}"
 
   testImplementation project(':tapestry-test')

Reply via email to