From f09ebc5136d6a84f3b02d4d62ef13259683b8173 Mon Sep 17 00:00:00 2001
From: Christoph John <christoph.john@macd.com>
Date: Mon, 4 Dec 2023 21:23:43 +0100
Subject: [PATCH 1/2] Removed guava dependency

Security vulnerabilities should be fixed in recent maven plugin versions.
---
 pom.xml | 10 ----------
 1 file changed, 10 deletions(-)

diff --git a/pom.xml b/pom.xml
index 93ed29f765..65c366d8a9 100644
--- a/pom.xml
+++ b/pom.xml
@@ -103,8 +103,6 @@
 		<docgen.version>1.6.8</docgen.version>
 		<jaxb.version>4.0.1</jaxb.version>
 		<apache.mina.version>2.2.3</apache.mina.version>
-		<commons.io.version>2.11.0</commons.io.version>
-		<guava.version>32.0.0-jre</guava.version>
 		<orchestra.file>OrchestraFIXLatest.xml</orchestra.file>
 		<org.quickfixj.orchestra.tools.version>1.0.2</org.quickfixj.orchestra.tools.version>
 		<proxool.version>0.9.1</proxool.version>
@@ -226,14 +224,6 @@
 				<artifactId>plexus-utils</artifactId>
 				<version>3.3.1</version>
 			</dependency>
-			<!-- the version of the guava transitive dependency is managed to resolve security vulnerability 
-			     reported for maven plugin dependencies, it is expected that this will be resolved in a 
-			     subsequent version of maven at which point this dependency management may be removed -->
-			<dependency>
-			  <groupId>com.google.guava</groupId>
-			  <artifactId>guava</artifactId>
-			  <version>${guava.version}</version>
-			</dependency>
 			<dependency>
 				<groupId>com.sleepycat</groupId>
 				<artifactId>je</artifactId>

From 4693ea223bb5ede64e1f0a29d21fd78478360a7b Mon Sep 17 00:00:00 2001
From: Christoph John <christoph.john@macd.com>
Date: Mon, 4 Dec 2023 21:37:23 +0100
Subject: [PATCH 2/2] Re-added commons.io version

---
 pom.xml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/pom.xml b/pom.xml
index 65c366d8a9..d674d4bde4 100644
--- a/pom.xml
+++ b/pom.xml
@@ -103,6 +103,7 @@
 		<docgen.version>1.6.8</docgen.version>
 		<jaxb.version>4.0.1</jaxb.version>
 		<apache.mina.version>2.2.3</apache.mina.version>
+		<commons.io.version>2.11.0</commons.io.version>
 		<orchestra.file>OrchestraFIXLatest.xml</orchestra.file>
 		<org.quickfixj.orchestra.tools.version>1.0.2</org.quickfixj.orchestra.tools.version>
 		<proxool.version>0.9.1</proxool.version>