(tapestry-5) branch master updated: TAP5-2794: upgrade commons-io and commons-fileupload

Sat, 26 Oct 2024 06:15:38 -0700 

This is an automated email from the ASF dual-hosted git repository.

thiagohp pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/tapestry-5.git


The following commit(s) were added to refs/heads/master by this push:
     new 1289d554b TAP5-2794: upgrade commons-io and commons-fileupload
1289d554b is described below

commit 1289d554b11e380c75af782c367b31a69f606721
Author: Thiago H. de Paula Figueiredo <thi...@arsmachina.com.br>
AuthorDate: Sat Oct 26 10:10:33 2024 -0300

    TAP5-2794: upgrade commons-io and commons-fileupload
    
    dependencies so we don't use versions with known security
    vulnerabilities.
---
 build.gradle                 | 3 ++-
 tapestry-http/build.gradle   | 2 +-
 tapestry-upload/build.gradle | 2 +-
 3 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/build.gradle b/build.gradle
index 54482cfd4..169121afb 100755
--- a/build.gradle
+++ b/build.gradle
@@ -25,6 +25,7 @@ project.ext.versions = [
     jsonschemaGenerator: "4.20.0",
     junitJupiter: "5.10.2",
     commonsLang: "3.4",
+    commonsIo: "2.17.0",
     webdriverManager: "5.3.1",
     injectApi: "2.0.1",
     annotationApi: "2.0.0"
@@ -411,7 +412,7 @@ subprojects {
         resolutionStrategy.force "antlr:antlr:2.7.7",
             "cglib:cglib-nodep:2.2",
             "commons-codec:commons-codec:1.10",
-            "commons-io:commons-io:2.13.0",
+            "commons-io:commons-io:${versions.commonsIo}",
             "commons-logging:commons-logging:1.1.3",
             "hsqldb:hsqldb:2.2.8",
             "org.antlr:antlr-runtime:3.5.2",
diff --git a/tapestry-http/build.gradle b/tapestry-http/build.gradle
index be6e3779c..59d4a7f67 100644
--- a/tapestry-http/build.gradle
+++ b/tapestry-http/build.gradle
@@ -15,7 +15,7 @@ dependencies {
     provided "jakarta.servlet:jakarta.servlet-api:${versions.servletapi}"
 
     implementation "commons-codec:commons-codec:1.10"
-    implementation "commons-io:commons-io:2.13.0"
+    implementation "commons-io:commons-io:${versions.commonsIo}"
 
     testRuntimeOnly "org.hsqldb:hsqldb:1.8.0.10"
 
diff --git a/tapestry-upload/build.gradle b/tapestry-upload/build.gradle
index 19abdd57d..3db4c6e70 100644
--- a/tapestry-upload/build.gradle
+++ b/tapestry-upload/build.gradle
@@ -3,7 +3,7 @@ description = "File Upload component, with supporting services"
 dependencies {
   implementation project(':tapestry-core')
   api "org.apache.commons:commons-fileupload2-jakarta:2.0.0-M1"
-  implementation "commons-io:commons-io:2.13.0"
+  implementation "commons-io:commons-io:${versions.commonsIo}"
   provided "jakarta.servlet:jakarta.servlet-api:${versions.servletapi}"
 
   testImplementation project(':tapestry-test')

Reply via email to