Skip to content

Commit d6183bc

Browse files
shashank11pshashank11p
committed
fix vulnerabilities
1 parent 31c15da commit d6183bc

File tree

3 files changed

+11
-1
lines changed

3 files changed

+11
-1
lines changed

otel-extensions/build.gradle.kts

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -46,6 +46,10 @@ dependencies {
4646
api("com.google.protobuf:protobuf-java-util")
4747
// convert yaml to json, since java protobuf impl supports only json
4848
implementation("com.fasterxml.jackson.dataformat:jackson-dataformat-yaml:2.11.3")
49+
// fix vulnerability
50+
constraints {
51+
api("com.google.code.gson:gson:2.8.9")
52+
}
4953

5054
testImplementation("io.opentelemetry:opentelemetry-sdk-extension-autoconfigure:${versions["opentelemetry"]}-alpha")
5155
testImplementation("io.opentelemetry:opentelemetry-sdk:${versions["opentelemetry"]}")

shaded-protobuf-java-util/build.gradle.kts

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,10 @@ dependencies {
88
exclude("com.google.protobuf", "protobuf-java")
99
exclude("com.google.guava", "guava")
1010
}
11+
// fix vulnerability
12+
constraints {
13+
implementation("com.google.code.gson:gson:2.8.9")
14+
}
1115
}
1216

1317
tasks.shadowJar {

testing-bootstrap/build.gradle.kts

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -16,7 +16,9 @@ dependencies {
1616
implementation(project(":javaagent-core"))
1717
implementation(project(":filter-api"))
1818

19-
implementation("ch.qos.logback:logback-classic:1.2.3")
19+
implementation("ch.qos.logback:logback-classic:1.2.3") {
20+
exclude("ch.qos.logback:logback-core@1.2.3")
21+
}
2022
implementation("org.slf4j:slf4j-api:${versions["slf4j"]}")
2123
}
2224

0 commit comments

Comments
 (0)