Skip to content
Permalink
Browse files
Use HTTPS instead of HTTP to resolve dependencies
This fixes a security vulnerability in this project where the `pom.xml`
files were configuring Maven to resolve dependencies over HTTP instead of
HTTPS.

Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
  • Loading branch information
JLLeitschuh committed Feb 10, 2020
1 parent d2cf109 commit e6c2ee7f24ee31b3217fb97bdc4306a012462ca9
Showing 1 changed file with 2 additions and 2 deletions.
@@ -338,7 +338,7 @@
<repository>
<id>apache.snapshots</id>
<name>Apache Maven Snapshot Repository</name>
<url>http://repository.apache.org/content/groups/snapshots/</url>
<url>https://repository.apache.org/content/groups/snapshots/</url>
<releases>
<enabled>false</enabled>
</releases>
@@ -352,7 +352,7 @@
<pluginRepository>
<id>apache.snapshots</id>
<name>Apache Maven Snapshot Repository</name>
<url>http://repository.apache.org/content/groups/snapshots/</url>
<url>https://repository.apache.org/content/groups/snapshots/</url>
<layout>default</layout>
<snapshots>
<enabled>true</enabled>

0 comments on commit e6c2ee7

Please sign in to comment.