chore(deps): update dependencies for security (#5813)

This commit is contained in:
Balázs Szücs
2026-02-27 10:10:40 +00:00
committed by GitHub
parent 1bac8417af
commit 7310b75ee6
4 changed files with 12 additions and 12 deletions
+4 -4
View File
@@ -22,14 +22,14 @@ import org.gradle.jvm.toolchain.JavaLanguageVersion
ext {
springBootVersion = "4.0.3"
pdfboxVersion = "3.0.6"
imageioVersion = "3.13.0"
imageioVersion = "3.13.1"
lombokVersion = "1.18.42"
bouncycastleVersion = "1.83"
springSecuritySamlVersion = "7.0.2"
openSamlVersion = "4.3.2"
commonmarkVersion = "0.27.1"
googleJavaFormatVersion = "1.34.1"
logback = "1.5.28"
logback = "1.5.32"
junitPlatformVersion = "1.12.2"
modernJavaVersion = 21
}
@@ -194,8 +194,8 @@ subprojects {
// - CVE-2022-25647: gson 2.8.9+ (explicit dependency overrides tabula 2.8.7)
// - CVE-2025-66453: rhino 1.7.15 (explicit dependency overrides verapdf 1.7.13)
// Fallback strategy force declarations for additional safety:
resolutionStrategy.force 'com.google.code.gson:gson:2.8.9'
resolutionStrategy.force 'org.mozilla:rhino:1.7.15'
resolutionStrategy.force 'com.google.code.gson:gson:2.13.2'
resolutionStrategy.force 'org.mozilla:rhino:1.9.1'
// CVE-2025-48924: commons-lang3 3.20.0 DoS prevention
resolutionStrategy.force 'org.apache.commons:commons-lang3:3.20.0'
// CVE-2024-47554: commons-io 2.21.0 DoS prevention