Commit 308d8f57 authored by cdanger's avatar cdanger

Merge branch 'develop' of https://github.com/authzforce/core.git into develop

parents d0681430 81d7d0c6
[![Codacy Badge](https://api.codacy.com/project/badge/Grade/dee3e6f5cdd240fc80dfdcc1ee419ac8)](https://www.codacy.com/app/coder103/authzforce-ce-core?utm_source=github.com&utm_medium=referral&utm_content=authzforce/core&utm_campaign=Badge_Grade)
[![CII Best Practices](https://bestpractices.coreinfrastructure.org/projects/389/badge)](https://bestpractices.coreinfrastructure.org/projects/389)
[![Build Status](https://travis-ci.org/authzforce/core.svg?branch=develop)](https://travis-ci.org/authzforce/core)
Javadocs: PDP engine [![Javadocs](http://javadoc.io/badge/org.ow2.authzforce/authzforce-ce-core-pdp-engine.svg)](http://javadoc.io/doc/org.ow2.authzforce/authzforce-ce-core-pdp-engine), XACML/JSON extension [![Javadocs](http://javadoc.io/badge/org.ow2.authzforce/authzforce-ce-core-pdp-io-xacml-json.svg)](http://javadoc.io/doc/org.ow2.authzforce/authzforce-ce-core-pdp-io-xacml-json), Test utilities [![Javadocs](http://javadoc.io/badge/org.ow2.authzforce/authzforce-ce-core-pdp-testutils.svg)](http://javadoc.io/doc/org.ow2.authzforce/authzforce-ce-core-pdp-testutils)
......
......@@ -10,4 +10,13 @@
<cve>CVE-2007-6059</cve>
<cve>CVE-2015-9097</cve>
</suppress>
</suppressions>
\ No newline at end of file
<suppress>
<notes><![CDATA[
file name: spring-core-4.3.17.RELEASE.jar,
false positive for CVE-2018-1258
]]></notes>
<gav>org.springframework:spring-core:4.3.17.RELEASE</gav>
<cve>CVE-2018-1258</cve>
</suppress>
</suppressions>
......@@ -10,4 +10,13 @@
<cve>CVE-2007-6059</cve>
<cve>CVE-2015-9097</cve>
</suppress>
</suppressions>
\ No newline at end of file
<suppress>
<notes><![CDATA[
file name: spring-core-4.3.17.RELEASE.jar,
false positive for CVE-2018-1258
]]></notes>
<gav>org.springframework:spring-core:4.3.17.RELEASE</gav>
<cve>CVE-2018-1258</cve>
</suppress>
</suppressions>
......@@ -36,6 +36,13 @@
<version>15.2.0</version>
</dependency>
<!-- /AuthzForce dependencies -->
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-core</artifactId>
<!-- Mitigation for CVE-2018-1257, CVE-2018-1258, CVE-2018-1275, CVE-2018-1271, CVE-2018-1270, CVE-2018-1272.
TODO: fix it in authzforce-ce-parent's managed version -->
<version>4.3.17.RELEASE</version>
</dependency>
<!-- Test dependencies -->
<dependency>
<groupId>junit</groupId>
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment