[Snyk] Security upgrade com.google.oauth-client:google-oauth-client-jetty from 1.22.0 to 1.32.1 #1050
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* Issue #IQ-45 feat: CSP changes * Issue #KN-585 feat: Single click local installation of knowledge platform * Issue #KN-603 fix: CSP changes * Issue #KN-603 fix: remove gcloud hard dependency * Issue #KN-15 fix:Postman search-service API positive test cases - * feat (doc): local setup using kubernetes. Setup of DBs and Taxonomy-Service. * Issue #KN-15 fix:Postman search-service API Negative test cases * feat (doc): local setup using kubernetes. * Issue #KN-439 feat: Handles domain agnostic for Neo4J. * Issue #KN-439 feat: Handles domain agnostic for Neo4J. * Issue #KN-439 feat: Handles domain agnostic for Neo4J. * Issue #KN-439 test: Added the config for unit test. * Issue #KN-439 feat: Fixed the replacement issue. * Issue #KN-439 feat: Handles domain agnostic for Cassandra. * Issue #KN-439 feat: Handles domain agnostic for Cassandra. * Issue #KN-579 feat: Properties update * Issue #KN-579 feat: Properties update * Issue #KN-439 fix: Fixed update scenario where response is return with metadata without reading it again. * Issue #KN-439 test: Fixed update scenario where response is return with metadata without reading it again. * Issue #KN-439 merge: csp-migration to release-5.2.0 (#900) * Issue #KN-439 fix: Fixed saveExternalRelativePath issue for ArrayList * Issue #KN-439 feat: Added the variable for relative_path_prefix Co-authored-by: anilgupta <anil.gupta@tarento.com> Co-authored-by: vinukumar-vs <vinukumar_vs@yahoo.com> * Issue #KN-427 feat: Test case update * Issue #KN-427 feat: Test case update * Issue #KN-439 feat: Fixed ClassCast issue. * Issue #KN-439 feat: Fixed the NullPointer issue * Issue #IQ-193 fix: updated code for cname * Issue #IQ-193 fix: updated code * Issue #IQ-193 feat: added test cases * Issue #KN-439 chore: added the migrationVersion in asset, content and collection schema.json * Issue #KN-439 chore: Added the more fields in metadata list * Issue #KN-667 fix: Search-service: Search API - Part 2 * Issue #CO-173 debug: Adding debug statements * Issue #CO-173 debug: Adding debug statements * Issue #CO-173 debug: Adding debug statements * Issue #CO-173 debug: Adding debug statements * Issue #CO-173 fix: Schema validation fix * Issue #CO-173 fix: Schema validation fix * Issue #CO-173 fix: Schema validation fix * Issue #KN- fix: relational metadata backward compatibility fix * Issue #KN-730 fix: QR Code and QRRequired inconsistency debug * Issue #KN-751 fix: Content and collection image publish issue * Issue #KN-754 feat: Postman DOCS publishing. * Issue #KN-754 fix: Sunbird License API collection name updated * Issue KN-767 feat (doc): content service local setup using kubernetes * Issue KN-767 feat (doc): content service local setup using kubernetes * Issue KN-767 feat (doc): content service local setup using kubernetes * Issue KN-767 fix: content service config map updated * Corrected the typo in line 20 Refer to https://github.com/orgs/Sunbird-inQuiry/discussions/62 * feat : Updated scala version to 2.12 * Issue KN-767 feat: Added Terraform scripts and Helmcharts for one click installation * Issue KN-767 feat: Removed the unused helmcharts * Issue KN-767 feat: Updated Readme file . * Issue KN-767 feat: Updated Readme file . * Issue KN-767 feat: Removed Unused files . * Issue KN-767 feat: Added gitignore. * Issue KN-767 feat: Added Helm chart and terraform file for content-service and added few changes to taxonomy-service. * Issue KN-767 feat: Added Helm chart and terraform file for search-service * Issue KN-767 feat: Added Helm chart and terraform file for learning-service ,added configmaps and updated changes in the helmcharts. * Issue KN-767 feat:Added changes in Neo4j to connect with logstash * Delete terraform.tfstate * Delete terraform.tfstate.backup * Issue KN-767 feat:Added learning service terraform script * Issue #KN-767 fix: knowlg one click installation for azure added * Issue #KN-767 fix: dial services helm charts added * Issue #KN-767 fix: Updated README.md file * Issue #KN-767 fix:Added Flink Helm Chart and Terraform script * Issue #KN-767 fix: knowlg one click installation for flink jobs in azure added * Revert "Merge branch 'Sunbird-Knowlg:master' into KN-848" This reverts commit 9c7c619, reversing changes made to 59e42ec. * Delete schema.json * Issue KN-848 fix: Removed the deprecated import and added the alternative * Issue #KN-767 fix: search service config updated * Issue #KN-10 feat: Added create framework API * Issue #KN-10 fix: Updated youtubeurl * Delete StorageService.scala * Revert "Delete StorageService.scala" This reverts commit f633e69. * Updated Cloud-store-sdk version * Update YouTubeUrlUtilTest.java * Update YouTubeURLManagerImplTest.java * Updated YoutubeUrls * Issue #KN-10 feat: Added framework cache for read framework * Issue #KN-10 feat: Updated create framework API * Undo logger changes * Update DataNode.scala * Update DataNode , DefinitionNode * Updated Youtube URLs * Update schema * Issue #KN-10 feat: Added update framework API * Issue #KN-10 feat: retire framework API added * Issue #KN-10 feat: Added copy framework API * Issue #KN-10 fix: create framework API fixes * Issue #KN-10 feat: Added update and retire framework APIs * Issue #KN-10 feat: Added update and retire framework APIsIssue #KN-10 feat: Added Publish framework APIs * Issue #KN-10 feat: framework publish and read API changes * feat: refactoring jacoco version update * Issue #KN-10 feat: category, categoryInstance and term APIs Added * Issue #KN-848 fix: updated scala version and test dependencies * Issue #KN-848 fix: updated jsonschemavalidator * Issue #KN-848 fix: updated schema path * Issue #KN-848 fix: updated schema path * Issue #KN-848 fix: updated schema path * Issue #KN-10 feat:Added TestCases for Master Category * feat: handle in-relationship metadata to set the index For FrameworkCategory create it uses in relation with Framework. This is not handled properly to set the index value... This commit has the required changes. * Issue #KN-10 feat:Bug fix in Create Category API * Issue #KN-10 feat:Added TestCases for CategoryInstance ,Framework Term * Issue KN-10 fix: get node inRelations data issue fix * KN-10 fix: index value populating in relation metadata * Issue IQ-436 feat: code changes for question & questionset v2 api's * Issue #IQ-436 fix: fixed HttpUrlUtilTest tests * KN-10 fix: index value populating in relation metadata for term api * Issue KN-10 fix: Validate translations and bug fix in category * Issue #IQ-436 fix: updated code to handle NullPointerException * Issue #IQ-436 fix: fixed build issue * Issue #IQ-436 fix: fixed build issue * Issue #KN-848 fix: updated test cases * Issue #IQ-436 feat: added test cases * Issue #IQ-436 fix: updated test cases * Issue #IQ-436 fix: updated test case * Issue KN-848 feat: taxonomy service migration to SBT. * Issue #IQ436 feat: updated code for test * Issue #KN-848 fix: updated test cases * Issue KN-10 fix: Added Master Category Validation in Category Instance Create API * Issue KN-10 fix: Added Test Cases * Issue KN-10 fix: framework read initial commit * Issue KN-10 fix: read and publish API changes * Issue KN-10 fix: read framework hierarchy fix * Issue KN-10 fix: Test Cases for Framework * Issue KN-10 feat: category terms set in redis on publish * Issue KN-10 fix: framework copy API changes * Issue KN-10 fix: master category required schema properties added * Issue KN-10 fix: Test Cases for Framework * Issue KN-10 fix: category instance validation issue fix * Issue #KN-848 fix: updated test cases * Issue KN-10 fix: framework copy API validation issue fix * Issue #KN-848 fix: updated application.conf * Issue #KN-848 fix: updated application.conf and error message * Issue KN-10 fix: removed commented code * Issue #KN-848 fix: removed imports * Issue KN-10 fix: removed println statements * Issue #KN-848 fix: removed imports * Issue #KN-848 fix: dummy commit * Issue #KN-848 fix: test commit * Issue #KN-848 fix: updated test * fix: added connection exception scenario. * fix: remove Matchers trait from BaseSpec * fix: upgrade plowermock * Issue KN-10 fix: DataSubGraph moved to correct folder * Issue KN-10 fix: test cases issue fixed * Issue KN-10 test: unit testes added for read & publish apis * Issue KN-10 fix: Jackson dependency exclusion * Issue #KN-10 fix: relation index issue fix * Issue #KN-10 fix: logs added * Issue #KN-10 fix: index issue fix for categoryInstance Currently, Framework getting from cache. While creating categoryInstance disabling the cache and getting node from DB * Issue #KN-10 fix: disable Cache true & false conditions handled * Issue #KN-10 fix: framework response sort issue fixed * Issue KN-10 fix: copy framework cache issue fix * Issue KN-10 fix: framework name issue fix * Issue KN-10 fix: DIAL code reserve issue fix * Issue KN-10 fix: DIAL code reserve issue fix * Issue KN-10 fix: DIAL code reserve issue fix * Issue KN-10 fix: category cache issue fix * Issue KN-10 fix: kafka version updated * Merge Release 5.5.0 into Release-5.6.0 (#982) * KN : CSP Changes * KN : CSP Changes - Circle ci changes * KN : CSP Changes - Circle ci changes * Update HttpUrlUtilTest.java * Issue #KN-920 fix: Jenkins Build changes * Issue #KN-920 fix: Jenkins Build changes * Issue #KN-920 fix: Jenkins Build changes * Issue #KN-920 fix: Jenkins Build changes * Issue #KN-920 fix: Jenkins Build changes * Issue #KN-920 fix: Jenkins Build changes * Issue #KN-920 fix: removed console logs * OCI changes: Added formaturl for content service (#979) * OCI changes Added formaturl for content service * ignore test case * CircleCi issue fix * CircleCi issue fix * Update StorageServiceTest.scala --------- Co-authored-by: Aiman Sharief <aiman.sharief.17@gmail.com> Co-authored-by: Mahesh Kumar Gangula <mahesh@sanketika.in> --------- Co-authored-by: vinukumar-vs <vinu.kumar@tarento.com> Co-authored-by: Anil Gupta <ani2824@gmail.com> Co-authored-by: vinukumar-vs <vinukumar_vs@yahoo.com> Co-authored-by: Gourav More <gourav_m@tekditechnologies.com> Co-authored-by: Mahesh Kumar Gangula <maheshkumargangula@users.noreply.github.com> Co-authored-by: anilgupta <anil.gupta@tarento.com> Co-authored-by: Jayaprakash8887 <Jayaprakash.narayanaswamy@tarento.com> Co-authored-by: Jayaprakash8887 <jayaprakash.n@tarento.com> Co-authored-by: Kumar Gauraw <er.krgauraw@gmail.com> Co-authored-by: Surendrasingh Sucharia <surendrasinghs@users.noreply.github.com> Co-authored-by: aimansharief <110388201+aimansharief@users.noreply.github.com> Co-authored-by: Aiman Sharief <aiman.sharief.17@gmail.com> Co-authored-by: shourya-solanki <shourya.solanki@syngenta.com> Co-authored-by: Mahesh Kumar Gangula <mahesh@sanketika.in>
Issue #KN fix: Updated the mvn command to build for content service
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-ORGMORTBAYJETTY-6243615
pallakartheekreddy
force-pushed
the
master
branch
from
4827b54 to
5712381
Compare
pallakartheekreddy
deleted the
snyk-fix-67403622568eb105367a11fb313aa29b
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JAVA-ORGMORTBAYJETTY-6243615
com.google.oauth-client:google-oauth-client-jetty:1.22.0 -> 1.32.1(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Path Traversal