>From Michael Blow <[email protected]>: Michael Blow has submitted this change. ( https://asterix-gerrit.ics.uci.edu/c/asterixdb/+/20267 )
Change subject: [NO ISSUE][MISC] Update nimbus-jose-jwt to 10.0.2 to address CVE ...................................................................... [NO ISSUE][MISC] Update nimbus-jose-jwt to 10.0.2 to address CVE Ext-ref: MB-68239 Change-Id: Icd064fba94333f42cc5569a684c6b0ea00cd7cbf Reviewed-on: https://asterix-gerrit.ics.uci.edu/c/asterixdb/+/20267 Reviewed-by: Michael Blow <[email protected]> Reviewed-by: Ian Maxon <[email protected]> Tested-by: Michael Blow <[email protected]> --- M asterixdb/pom.xml M hyracks-fullstack/hyracks/hyracks-hdfs/pom.xml M hyracks-fullstack/pom.xml 3 files changed, 19 insertions(+), 12 deletions(-) Approvals: Ian Maxon: Looks good to me, approved Michael Blow: Looks good to me, but someone else must approve; Verified diff --git a/asterixdb/pom.xml b/asterixdb/pom.xml index c5c278c..627f213 100644 --- a/asterixdb/pom.xml +++ b/asterixdb/pom.xml @@ -1025,10 +1025,6 @@ <artifactId>json-smart</artifactId> </exclusion> <exclusion> - <groupId>com.nimbusds</groupId> - <artifactId>nimbus-jose-jwt</artifactId> - </exclusion> - <exclusion> <groupId>commons-logging</groupId> <artifactId>commons-logging</artifactId> </exclusion> diff --git a/hyracks-fullstack/hyracks/hyracks-hdfs/pom.xml b/hyracks-fullstack/hyracks/hyracks-hdfs/pom.xml index ff4fd28..11f5eda 100644 --- a/hyracks-fullstack/hyracks/hyracks-hdfs/pom.xml +++ b/hyracks-fullstack/hyracks/hyracks-hdfs/pom.xml @@ -100,10 +100,6 @@ <artifactId>hadoop-common</artifactId> <exclusions> <exclusion> - <groupId>com.nimbusds</groupId> - <artifactId>nimbus-jose-jwt</artifactId> - </exclusion> - <exclusion> <groupId>javax.servlet.jsp</groupId> <artifactId>jsp-api</artifactId> </exclusion> diff --git a/hyracks-fullstack/pom.xml b/hyracks-fullstack/pom.xml index a72968d..f0abd4c 100644 --- a/hyracks-fullstack/pom.xml +++ b/hyracks-fullstack/pom.xml @@ -341,10 +341,6 @@ <artifactId>json-smart</artifactId> </exclusion> <exclusion> - <groupId>com.nimbusds</groupId> - <artifactId>nimbus-jose-jwt</artifactId> - </exclusion> - <exclusion> <groupId>javax.servlet.jsp</groupId> <artifactId>jsp-api</artifactId> </exclusion> @@ -635,6 +631,11 @@ <artifactId>json-smart</artifactId> <version>2.4.11</version> </dependency> + <dependency> + <groupId>com.nimbusds</groupId> + <artifactId>nimbus-jose-jwt</artifactId> + <version>10.0.2</version> + </dependency> </dependencies> </dependencyManagement> <build> -- To view, visit https://asterix-gerrit.ics.uci.edu/c/asterixdb/+/20267 To unsubscribe, or for help writing mail filters, visit https://asterix-gerrit.ics.uci.edu/settings Gerrit-Project: asterixdb Gerrit-Branch: neo Gerrit-Change-Id: Icd064fba94333f42cc5569a684c6b0ea00cd7cbf Gerrit-Change-Number: 20267 Gerrit-PatchSet: 2 Gerrit-Owner: Michael Blow <[email protected]> Gerrit-Reviewer: Anon. E. Moose #1000171 Gerrit-Reviewer: Hussain Towaileb <[email protected]> Gerrit-Reviewer: Ian Maxon <[email protected]> Gerrit-Reviewer: Michael Blow <[email protected]> Gerrit-CC: Jenkins <[email protected]> Gerrit-MessageType: merged
