File tree Expand file tree Collapse file tree 2 files changed +13
-7
lines changed
cloudplatform/connectivity-ztis Expand file tree Collapse file tree 2 files changed +13
-7
lines changed Original file line number Diff line number Diff line change 88
88
<groupId >io.grpc</groupId >
89
89
<artifactId >grpc-protobuf</artifactId >
90
90
<scope >runtime</scope >
91
+ <exclusions >
92
+ <exclusion >
93
+ <groupId >com.google.protobuf</groupId >
94
+ <artifactId >protobuf-java</artifactId >
95
+ </exclusion >
96
+ </exclusions >
97
+ </dependency >
98
+ <!-- Fix CVE-2024-7254 -->
99
+ <dependency >
100
+ <groupId >com.google.protobuf</groupId >
101
+ <artifactId >protobuf-java</artifactId >
102
+ <version >3.25.8</version >
103
+ <scope >runtime</scope >
91
104
</dependency >
92
105
<dependency >
93
106
<groupId >io.grpc</groupId >
Original file line number Diff line number Diff line change 122
122
<commons-codec .version>1.19.0</commons-codec .version>
123
123
<commons-beanutils .version>1.11.0</commons-beanutils .version>
124
124
<findbugs-jsr305 .version>3.0.2</findbugs-jsr305 .version>
125
- <protobuf-java .version>3.25.8</protobuf-java .version>
126
125
<jsr305 .optional>true</jsr305 .optional>
127
126
<maven-compiler-plugin .version>3.14.0</maven-compiler-plugin .version>
128
127
<maven .compiler.proc>full</maven .compiler.proc>
297
296
<artifactId >commons-beanutils</artifactId >
298
297
<version >${commons-beanutils.version} </version >
299
298
</dependency >
300
- <!-- resolve vulnerability CVE-2024-7254 -->
301
- <dependency >
302
- <groupId >com.google.protobuf</groupId >
303
- <artifactId >protobuf-java</artifactId >
304
- <version >${protobuf-java.version} </version >
305
- </dependency >
306
299
<!-- Dependencies with test scope-->
307
300
<dependency >
308
301
<groupId >com.sap.cloud.sdk</groupId >
You can’t perform that action at this time.
0 commit comments