|
82 | 82 | <maven.compiler.source>1.8</maven.compiler.source> |
83 | 83 | <maven.compiler.target>1.8</maven.compiler.target> |
84 | 84 | <log4j.version>2.17.1</log4j.version> |
| 85 | + <slf4j.version>1.7.21</slf4j.version> |
85 | 86 | <vertx.version>4.2.4</vertx.version> |
| 87 | + <netty.version>4.1.73.Final</netty.version> |
86 | 88 | <kafka.version>2.8.1</kafka.version> |
| 89 | + <qpid-proton.version>0.33.10</qpid-proton.version> |
87 | 90 | <kafka-kubernetes-config-provider.version>1.0.0</kafka-kubernetes-config-provider.version> |
88 | 91 | <kafka-env-var-config-provider.version>1.0.0</kafka-env-var-config-provider.version> |
89 | 92 | <debezium.version>1.2.3.Final</debezium.version> |
90 | 93 | <maven.checkstyle.version>3.1.2</maven.checkstyle.version> |
91 | 94 | <hamcrest.version>2.2</hamcrest.version> |
| 95 | + <junit.version>5.8.2</junit.version> |
92 | 96 | <maven-jar-plugin.version>3.1.2</maven-jar-plugin.version> |
93 | 97 | <maven-surefire-plugin.version>3.0.0-M5</maven-surefire-plugin.version> |
94 | 98 | <maven-failsafe-plugin.version>3.0.0-M5</maven-failsafe-plugin.version> |
95 | 99 | <maven.assembly.version>3.1.0</maven.assembly.version> |
96 | 100 | <maven.javadoc.version>3.1.0</maven.javadoc.version> |
97 | 101 | <maven.source.version>3.0.1</maven.source.version> |
| 102 | + <maven.dependency.version>3.1.1</maven.dependency.version> |
98 | 103 | <maven.gpg.version>1.6</maven.gpg.version> |
99 | 104 | <sonatype.nexus.staging>1.6.3</sonatype.nexus.staging> |
100 | 105 | <swagger2markup.version>1.3.7</swagger2markup.version> |
101 | 106 | <jackson-core.version>2.13.1</jackson-core.version> |
102 | | - <netty.version>4.1.72.Final</netty.version> |
103 | 107 | <tomcat-embed-core.version>8.5.73</tomcat-embed-core.version> |
104 | 108 | <spotbugs.version>4.0.1</spotbugs.version> |
105 | 109 | <strimzi-oauth.version>0.9.0</strimzi-oauth.version> |
|
108 | 112 | <opentracing-kafka-client.version>0.1.15</opentracing-kafka-client.version> |
109 | 113 | <micrometer.version>1.3.9</micrometer.version> |
110 | 114 | <jmx-prometheus-collector.version>0.12.0</jmx-prometheus-collector.version> |
| 115 | + <prometheus-simpleclient.version>0.7.0</prometheus-simpleclient.version> |
111 | 116 | <commons-cli.version>1.4</commons-cli.version> |
112 | 117 | <test-container.version>0.100.0</test-container.version> |
113 | 118 | <jakarta.version>2.3.2</jakarta.version> |
|
117 | 122 | </properties> |
118 | 123 |
|
119 | 124 | <dependencies> |
| 125 | + <dependency> |
| 126 | + <groupId>io.vertx</groupId> |
| 127 | + <artifactId>vertx-core</artifactId> |
| 128 | + <version>${vertx.version}</version> |
| 129 | + </dependency> |
120 | 130 | <dependency> |
121 | 131 | <groupId>io.vertx</groupId> |
122 | 132 | <artifactId>vertx-proton</artifactId> |
|
132 | 142 | <artifactId>vertx-web</artifactId> |
133 | 143 | <version>${vertx.version}</version> |
134 | 144 | </dependency> |
| 145 | + <dependency> |
| 146 | + <groupId>io.vertx</groupId> |
| 147 | + <artifactId>vertx-web-common</artifactId> |
| 148 | + <version>${vertx.version}</version> |
| 149 | + </dependency> |
135 | 150 | <dependency> |
136 | 151 | <groupId>io.vertx</groupId> |
137 | 152 | <artifactId>vertx-web-openapi</artifactId> |
138 | 153 | <version>${vertx.version}</version> |
139 | 154 | </dependency> |
| 155 | + <dependency> |
| 156 | + <groupId>io.vertx</groupId> |
| 157 | + <artifactId>vertx-web-validation</artifactId> |
| 158 | + <version>${vertx.version}</version> |
| 159 | + </dependency> |
| 160 | + <dependency> |
| 161 | + <groupId>io.vertx</groupId> |
| 162 | + <artifactId>vertx-json-schema</artifactId> |
| 163 | + <version>${vertx.version}</version> |
| 164 | + </dependency> |
140 | 165 | <dependency> |
141 | 166 | <groupId>io.vertx</groupId> |
142 | 167 | <artifactId>vertx-config</artifactId> |
|
152 | 177 | <artifactId>kafka-clients</artifactId> |
153 | 178 | <version>${kafka.version}</version> |
154 | 179 | </dependency> |
| 180 | + <dependency> |
| 181 | + <groupId>org.apache.qpid</groupId> |
| 182 | + <artifactId>proton-j</artifactId> |
| 183 | + <version>${qpid-proton.version}</version> |
| 184 | + </dependency> |
| 185 | + <dependency> |
| 186 | + <groupId>io.netty</groupId> |
| 187 | + <artifactId>netty-codec-http</artifactId> |
| 188 | + <version>${netty.version}</version> |
| 189 | + </dependency> |
| 190 | + <dependency> |
| 191 | + <groupId>io.netty</groupId> |
| 192 | + <artifactId>netty-common</artifactId> |
| 193 | + <version>${netty.version}</version> |
| 194 | + </dependency> |
155 | 195 | <dependency> |
156 | 196 | <groupId>com.fasterxml.jackson.core</groupId> |
157 | | - <artifactId>jackson-core</artifactId> |
| 197 | + <artifactId>jackson-databind</artifactId> |
158 | 198 | <version>${jackson-core.version}</version> |
159 | 199 | </dependency> |
| 200 | + <dependency> |
| 201 | + <groupId>org.slf4j</groupId> |
| 202 | + <artifactId>slf4j-api</artifactId> |
| 203 | + <version>${slf4j.version}</version> |
| 204 | + </dependency> |
160 | 205 | <dependency> |
161 | 206 | <groupId>org.apache.logging.log4j</groupId> |
162 | 207 | <artifactId>log4j-api</artifactId> |
|
183 | 228 | <artifactId>kafka-oauth-client</artifactId> |
184 | 229 | <version>${strimzi-oauth.version}</version> |
185 | 230 | </dependency> |
| 231 | + <dependency> |
| 232 | + <groupId>jakarta.xml.bind</groupId> |
| 233 | + <artifactId>jakarta.xml.bind-api</artifactId> |
| 234 | + <version>${jakarta.version}</version> |
| 235 | + </dependency> |
| 236 | + <dependency> |
| 237 | + <groupId>io.jaegertracing</groupId> |
| 238 | + <artifactId>jaeger-core</artifactId> |
| 239 | + <version>${jaeger.version}</version> |
| 240 | + </dependency> |
186 | 241 | <dependency> |
187 | 242 | <groupId>io.jaegertracing</groupId> |
188 | 243 | <artifactId>jaeger-client</artifactId> |
|
203 | 258 | <artifactId>opentracing-kafka-client</artifactId> |
204 | 259 | <version>${opentracing-kafka-client.version}</version> |
205 | 260 | </dependency> |
| 261 | + <dependency> |
| 262 | + <groupId>io.micrometer</groupId> |
| 263 | + <artifactId>micrometer-core</artifactId> |
| 264 | + <version>${micrometer.version}</version> |
| 265 | + </dependency> |
206 | 266 | <dependency> |
207 | 267 | <groupId>io.micrometer</groupId> |
208 | 268 | <artifactId>micrometer-registry-prometheus</artifactId> |
|
213 | 273 | <artifactId>collector</artifactId> |
214 | 274 | <version>${jmx-prometheus-collector.version}</version> |
215 | 275 | </dependency> |
| 276 | + <dependency> |
| 277 | + <groupId>io.prometheus</groupId> |
| 278 | + <artifactId>simpleclient</artifactId> |
| 279 | + <version>${prometheus-simpleclient.version}</version> |
| 280 | + </dependency> |
| 281 | + <dependency> |
| 282 | + <groupId>io.prometheus</groupId> |
| 283 | + <artifactId>simpleclient_common</artifactId> |
| 284 | + <version>${prometheus-simpleclient.version}</version> |
| 285 | + </dependency> |
| 286 | + <dependency> |
| 287 | + <groupId>io.prometheus.jmx</groupId> |
| 288 | + <artifactId>collector</artifactId> |
| 289 | + <version>${jmx-prometheus-collector.version}</version> |
| 290 | + </dependency> |
216 | 291 | <dependency> |
217 | 292 | <groupId>commons-cli</groupId> |
218 | 293 | <artifactId>commons-cli</artifactId> |
|
244 | 319 | <artifactId>kafka-env-var-config-provider</artifactId> |
245 | 320 | <version>${kafka-env-var-config-provider.version}</version> |
246 | 321 | </dependency> |
247 | | - |
248 | 322 | <!-- Transitive dependency version overrides for Vulnerabilities: --> |
249 | | - <!-- overriding version commons-io for Vert.x - Vulnerability --> |
250 | | - <dependency> |
251 | | - <groupId>commons-io</groupId> |
252 | | - <artifactId>commons-io</artifactId> |
253 | | - <version>2.7</version> |
254 | | - </dependency> |
255 | 323 | <!-- overriding version of snakeyaml for prometheus.jmx.collector 0.12.0: Vulnerability: DOS --> |
256 | 324 | <dependency> |
257 | 325 | <groupId>org.yaml</groupId> |
258 | 326 | <artifactId>snakeyaml</artifactId> |
259 | 327 | <version>1.29</version> |
260 | 328 | </dependency> |
261 | | - <!-- overriding version of netty-codec for Vert.x - Vulnerability --> |
262 | | - <dependency> |
263 | | - <groupId>io.netty</groupId> |
264 | | - <artifactId>netty-codec</artifactId> |
265 | | - <version>${netty.version}</version> |
266 | | - </dependency> |
267 | | - <!-- overriding version of netty-handler for Vert.x - Vulnerability --> |
268 | | - <dependency> |
269 | | - <groupId>io.netty</groupId> |
270 | | - <artifactId>netty-handler</artifactId> |
271 | | - <version>${netty.version}</version> |
272 | | - </dependency> |
273 | 329 | <!-- overriding version of tomcat-embed-core for jaegertracing - Vulnerability --> |
274 | 330 | <dependency> |
275 | 331 | <groupId>org.apache.tomcat.embed</groupId> |
|
278 | 334 | </dependency> |
279 | 335 | <!-- Testing --> |
280 | 336 | <dependency> |
281 | | - <groupId>io.vertx</groupId> |
282 | | - <artifactId>vertx-unit</artifactId> |
283 | | - <version>${vertx.version}</version> |
| 337 | + <groupId>org.junit.jupiter</groupId> |
| 338 | + <artifactId>junit-jupiter-api</artifactId> |
| 339 | + <version>${junit.version}</version> |
284 | 340 | <scope>test</scope> |
285 | 341 | </dependency> |
286 | 342 | <dependency> |
|
303 | 359 | </dependency> |
304 | 360 | <dependency> |
305 | 361 | <groupId>org.hamcrest</groupId> |
306 | | - <artifactId>hamcrest-library</artifactId> |
| 362 | + <artifactId>hamcrest</artifactId> |
307 | 363 | <version>${hamcrest.version}</version> |
308 | 364 | <scope>test</scope> |
309 | 365 | </dependency> |
310 | | - <dependency> |
311 | | - <groupId>org.apache.kafka</groupId> |
312 | | - <artifactId>kafka_2.12</artifactId> |
313 | | - <version>${kafka.version}</version> |
314 | | - <scope>test</scope> |
315 | | - </dependency> |
316 | 366 | <dependency> |
317 | 367 | <groupId>io.strimzi</groupId> |
318 | 368 | <artifactId>strimzi-test-container</artifactId> |
319 | 369 | <version>${test-container.version}</version> |
320 | 370 | <scope>test</scope> |
321 | 371 | </dependency> |
322 | | - <dependency> |
323 | | - <groupId>jakarta.xml.bind</groupId> |
324 | | - <artifactId>jakarta.xml.bind-api</artifactId> |
325 | | - <version>${jakarta.version}</version> |
326 | | - </dependency> |
327 | 372 | </dependencies> |
328 | 373 |
|
329 | 374 | <pluginRepositories> |
|
435 | 480 | </execution> |
436 | 481 | </executions> |
437 | 482 | </plugin> |
| 483 | + <plugin> |
| 484 | + <groupId>org.apache.maven.plugins</groupId> |
| 485 | + <artifactId>maven-dependency-plugin</artifactId> |
| 486 | + <version>${maven.dependency.version}</version> |
| 487 | + <executions> |
| 488 | + <execution> |
| 489 | + <id>analyze</id> |
| 490 | + <goals> |
| 491 | + <goal>analyze-only</goal> |
| 492 | + </goals> |
| 493 | + <configuration> |
| 494 | + <failOnWarning>true</failOnWarning> |
| 495 | + <ignoredUnusedDeclaredDependencies> |
| 496 | + <ignoredUnusedDeclaredDependency>io.strimzi:kafka-env-var-config-provider</ignoredUnusedDeclaredDependency> |
| 497 | + <ignoredUnusedDeclaredDependency>io.strimzi:kafka-kubernetes-config-provider</ignoredUnusedDeclaredDependency> |
| 498 | + <ignoredUnusedDeclaredDependency>io.strimzi:kafka-oauth-client</ignoredUnusedDeclaredDependency> |
| 499 | + <ignoredUnusedDeclaredDependency>org.apache.logging.log4j:log4j-core</ignoredUnusedDeclaredDependency> |
| 500 | + <ignoredUnusedDeclaredDependency>org.apache.logging.log4j:log4j-slf4j-impl</ignoredUnusedDeclaredDependency> |
| 501 | + <ignoredUnusedDeclaredDependency>io.jaegertracing:jaeger-client</ignoredUnusedDeclaredDependency> |
| 502 | + <ignoredUnusedDeclaredDependency>org.yaml:snakeyaml</ignoredUnusedDeclaredDependency> <!-- CVE override --> |
| 503 | + <ignoredUnusedDeclaredDependency>org.apache.tomcat.embed:tomcat-embed-core</ignoredUnusedDeclaredDependency> <!-- CVE override --> |
| 504 | + </ignoredUnusedDeclaredDependencies> |
| 505 | + </configuration> |
| 506 | + </execution> |
| 507 | + </executions> |
| 508 | + </plugin> |
438 | 509 | <plugin> |
439 | 510 | <groupId>org.apache.maven.plugins</groupId> |
440 | 511 | <artifactId>maven-source-plugin</artifactId> |
|
0 commit comments