You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@bookkeeper.apache.org by yo...@apache.org on 2022/08/02 06:25:59 UTC

[bookkeeper] 06/22: upgrade groovy from 2.5.17 to 3.0.11 to fix CVE-2019-11358(7.5) (#3346)

This is an automated email from the ASF dual-hosted git repository.

yong pushed a commit to branch branch-4.15
in repository https://gitbox.apache.org/repos/asf/bookkeeper.git

commit 3464e07b9b9642ad59ecc78e26bfb23c457f7820
Author: Hang Chen <ch...@apache.org>
AuthorDate: Wed Jun 22 21:09:40 2022 +0800

    upgrade groovy from 2.5.17 to 3.0.11 to fix CVE-2019-11358(7.5) (#3346)
    
    (cherry picked from commit 8d4b9e2ce436977356f882ef39096e8281e56ebd)
---
 pom.xml       | 1 +
 tests/pom.xml | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index aa42a9abce..095d6da8a9 100644
--- a/pom.xml
+++ b/pom.xml
@@ -1133,6 +1133,7 @@
               <mixAuditAnalyzerEnabled>false</mixAuditAnalyzerEnabled>
               <nugetconfAnalyzerEnabled>false</nugetconfAnalyzerEnabled>
               <assemblyAnalyzerEnabled>false</assemblyAnalyzerEnabled>
+              <skipSystemScope>true</skipSystemScope>
             </configuration>
             <executions>
               <execution>
diff --git a/tests/pom.xml b/tests/pom.xml
index ae4f4b8ab3..2dc3e7b454 100644
--- a/tests/pom.xml
+++ b/tests/pom.xml
@@ -28,7 +28,7 @@
   <name>Apache BookKeeper :: Tests</name>
 
   <properties>
-    <groovy.version>2.5.8</groovy.version>
+    <groovy.version>3.0.11</groovy.version>
   </properties>
 
   <modules>