From 57033d30af9a72b030b87cb97d3d9e1a6aaf991e Mon Sep 17 00:00:00 2001 From: Rune Flobakk Date: Wed, 22 Oct 2025 16:42:18 +0200 Subject: [PATCH 1/2] Upgrade Maven plugins --- pom.xml | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/pom.xml b/pom.xml index 4904162..5d5f366 100644 --- a/pom.xml +++ b/pom.xml @@ -190,7 +190,7 @@ maven-enforcer-plugin - 3.4.1 + 3.6.2 @@ -225,27 +225,27 @@ maven-compiler-plugin - 3.13.0 + 3.14.1 maven-surefire-plugin - 3.2.5 + 3.5.4 maven-deploy-plugin - 3.1.2 + 3.1.4 maven-clean-plugin - 3.3.2 + 3.5.0 maven-dependency-plugin - 3.6.1 + 3.9.0 maven-install-plugin - 3.1.2 + 3.1.4 maven-resources-plugin @@ -253,17 +253,17 @@ maven-jar-plugin - 3.4.1 + 3.4.2 org.codehaus.mojo versions-maven-plugin - 2.16.2 + 2.19.1 com.github.siom79.japicmp japicmp-maven-plugin - 0.21.2 + 0.24.2 From 8cbcde4a9991a6ff91f1874d13cb65078275df68 Mon Sep 17 00:00:00 2001 From: Rune Flobakk Date: Wed, 22 Oct 2025 16:47:32 +0200 Subject: [PATCH 2/2] Upgrade dependencies (fixes CVE-2025-8916) https://github.com/digipost/certificate-validator/security/dependabot/5 --- pom.xml | 25 +++++++++++++++---------- 1 file changed, 15 insertions(+), 10 deletions(-) diff --git a/pom.xml b/pom.xml index 5d5f366..3d38564 100644 --- a/pom.xml +++ b/pom.xml @@ -45,10 +45,17 @@ + + org.bouncycastle + bc-jdk18on-bom + 1.82 + pom + import + org.junit junit-bom - 5.10.2 + 5.14.0 pom import @@ -62,7 +69,7 @@ org.slf4j slf4j-bom - 2.0.13 + 2.0.17 pom import @@ -79,22 +86,20 @@ org.bouncycastle bcpkix-jdk18on - 1.78.1 org.bouncycastle bcprov-jdk18on - 1.78.1 org.apache.httpcomponents.client5 httpclient5 - 5.3.1 + 5.5.1 org.apache.httpcomponents.core5 httpcore5 - 5.2.4 + 5.3.6 org.slf4j @@ -108,13 +113,13 @@ no.digipost digg - 0.34 + 0.38 test commons-io commons-io - 2.16.1 + 2.20.0 test @@ -136,7 +141,7 @@ org.hamcrest hamcrest - 2.2 + 3.0 test @@ -164,7 +169,7 @@ nl.jqno.equalsverifier equalsverifier - 3.16.1 + 3.19.4 test