From 873941e828565571899ab083945c34732ba4d459 Mon Sep 17 00:00:00 2001
From: jozefbakus <jozef.bakus@gmail.com>
Date: Wed, 4 Jan 2023 09:23:15 +0100
Subject: [PATCH 1/2] Fixed vulnerabilities: CVE-2022-41946, CVE-2022-41854,
 CVE-2022-38752, CVE-2022-38750, CVE-2022-33980, CVE-2022-25857

---
 pom.xml | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/pom.xml b/pom.xml
index d4eaa691..e3885a09 100644
--- a/pom.xml
+++ b/pom.xml
@@ -72,10 +72,10 @@
         <slick.version>3.3.3</slick.version>
         <tminglei.version>0.19.6</tminglei.version>
         <slick-hikaricp.version>3.3.1</slick-hikaricp.version>
-        <postgresql>42.3.3</postgresql>
+        <postgresql>42.5.1</postgresql>
         <kafka.version>2.2.0</kafka.version>
         <embedded.kafka.version>2.2.0</embedded.kafka.version>
-        <commons.configuration2.version>2.7</commons.configuration2.version> <!-- Same as in Hyperdrive -->
+        <commons.configuration2.version>2.8.0</commons.configuration2.version>
         <play-json.version>2.7.3</play-json.version>
         <play-ws-standalone.version>2.0.3</play-ws-standalone.version>
         <play-ahc-ws-standalone.version>2.0.2</play-ahc-ws-standalone.version>
@@ -105,7 +105,7 @@
         <javamelody.spring.boot.starter.version>1.87.0</javamelody.spring.boot.starter.version>
         <buildnumber.maven.plugin.version>1.4</buildnumber.maven.plugin.version>
         <liquibase-maven-plugin.version>3.10.2</liquibase-maven-plugin.version>
-        <snakeyaml.version>1.26</snakeyaml.version>
+        <snakeyaml.version>1.33</snakeyaml.version>
         <commons-validator.version>1.7</commons-validator.version>
         <hibernate.validator.version>6.2.0.Final</hibernate.validator.version>
         <aws.java.sdk.bom.version>1.12.29</aws.java.sdk.bom.version>
@@ -420,6 +420,11 @@
             </resource>
         </resources>
         <plugins>
+            <plugin>
+                <groupId>org.owasp</groupId>
+                <artifactId>dependency-check-maven</artifactId>
+                <version>7.4.3</version>
+            </plugin>
             <plugin>
                 <groupId>org.springframework.boot</groupId>
                 <artifactId>spring-boot-maven-plugin</artifactId>

From f03af10c86ab90c93cdb06e61b2663c8b0829419 Mon Sep 17 00:00:00 2001
From: jozefbakus <jozef.bakus@gmail.com>
Date: Wed, 4 Jan 2023 09:25:50 +0100
Subject: [PATCH 2/2] Removed check dep plugin

---
 pom.xml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/pom.xml b/pom.xml
index e3885a09..3568c308 100644
--- a/pom.xml
+++ b/pom.xml
@@ -420,11 +420,6 @@
             </resource>
         </resources>
         <plugins>
-            <plugin>
-                <groupId>org.owasp</groupId>
-                <artifactId>dependency-check-maven</artifactId>
-                <version>7.4.3</version>
-            </plugin>
             <plugin>
                 <groupId>org.springframework.boot</groupId>
                 <artifactId>spring-boot-maven-plugin</artifactId>