Dependency updates and changes to dependency check suppressions

rjeberhard · rjeberhard · commit 3150d93c2951 · 2023-10-24T13:21:23.000-04:00
diff --git a/build-tools/dependency-check/dependency-check-suppression.xml b/build-tools/dependency-check/dependency-check-suppression.xml
@@ -34,4 +34,16 @@
         <packageUrl regex="true">^pkg:maven/com\.fasterxml\.jackson\.core/jackson-databind@.*$</packageUrl>
         <vulnerabilityName>CVE-2023-35116</vulnerabilityName>
     </suppress>
+    <suppress>
+        <notes><![CDATA[
+        This CVE does not apply because this CVE refers to an unrelated project.
+        ]]></notes>
+        <vulnerabilityName>CVE-2022-4244</vulnerabilityName>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[
+        This CVE does not apply because this CVE refers to an unrelated project.
+        ]]></notes>
+        <vulnerabilityName>CVE-2022-4245</vulnerabilityName>
+    </suppress>
 </suppressions>
diff --git a/pom.xml b/pom.xml
@@ -632,7 +632,7 @@
     <maven-dependency-plugin-version>3.6.0</maven-dependency-plugin-version>
     <exec-maven-plugin-version>3.1.0</exec-maven-plugin-version>
     <spotbugs-maven-plugin-version>4.7.3.6</spotbugs-maven-plugin-version>
-    <spotbugs-version>4.7.3</spotbugs-version>
+    <spotbugs-version>4.8.0</spotbugs-version>
     <checkstyle-version>10.12.4</checkstyle-version>
     <directory-maven-version>1.0</directory-maven-version>
     <maven-jxr-plugin-version>3.3.0</maven-jxr-plugin-version>
@@ -655,7 +655,7 @@
     <awaitility-version>4.2.0</awaitility-version>
     <client-java-version>16.0.3</client-java-version>
     <kotlin-stdlib-version>1.9.10</kotlin-stdlib-version>
-    <okhttp-version>4.11.0</okhttp-version>
+    <okhttp-version>4.12.0</okhttp-version>
     <okio-version>3.6.0</okio-version>
     <bc-jdk18on-version>1.76</bc-jdk18on-version>
     <junit.jupiter.version>5.10.0</junit.jupiter.version>
@@ -664,16 +664,16 @@
     <junit.platform.surefire.version>1.3.2</junit.platform.surefire.version>
     <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
     <jersey-version>3.1.3</jersey-version>
-    <jackson-version>2.15.2</jackson-version>
+    <jackson-version>2.15.3</jackson-version>
     <snakeyaml-version>1.33</snakeyaml-version>
-    <jackson-databind-version>2.15.2</jackson-databind-version>
+    <jackson-databind-version>2.15.3</jackson-databind-version>
     <dependency-check-version>8.4.0</dependency-check-version>
     <root-generated-swagger>${project.basedir}/src-generated-swagger</root-generated-swagger>
     <src-generated-swagger>${root-generated-swagger}/main/java</src-generated-swagger>
     <domain-swagger-file>${project.basedir}/swagger/domain.json</domain-swagger-file>
     <skip.unit.tests>false</skip.unit.tests>
     <skip.dependency-check>false</skip.dependency-check>
-    <jacoco.version>0.8.10</jacoco.version>
+    <jacoco.version>0.8.11</jacoco.version>
     <git-commit-id-plugin-version>4.9.10</git-commit-id-plugin-version>
     <htmlunit-version>2.70.0</htmlunit-version>
     <checkstyle.config.location>${root.basedir}/build-tools/checkstyle/customized_google_checks.xml</checkstyle.config.location>
