Security Upgrades (#15)

* Remove dependency upon camel-api

* Override and upgrade jackson-database to 2.13.1

* Overrider and upgrade httpmime to 4.5.13

* github: build against JDK 17

* Version set to 2.0.1
This commit is contained in:
Paul Campbell 2022-01-24 19:37:01 +00:00 committed by GitHub
parent 7d3af91b8c
commit 6c2480c861
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 29 additions and 9 deletions

View file

@ -11,7 +11,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
strategy: strategy:
matrix: matrix:
java: [ 11, 15 ] java: [ 11, 17 ]
steps: steps:
- uses: kamiazya/setup-graphviz@v1 - uses: kamiazya/setup-graphviz@v1
- uses: actions/checkout@v2.3.4 - uses: actions/checkout@v2.3.4

32
pom.xml
View file

@ -12,7 +12,7 @@
</parent> </parent>
<artifactId>kemitix-trello</artifactId> <artifactId>kemitix-trello</artifactId>
<version>2.0.0</version> <version>2.0.1</version>
<properties> <properties>
<tiles-maven-plugin.version>2.18</tiles-maven-plugin.version> <tiles-maven-plugin.version>2.18</tiles-maven-plugin.version>
@ -20,7 +20,6 @@
<trello-java-wrapper.version>0.14</trello-java-wrapper.version> <trello-java-wrapper.version>0.14</trello-java-wrapper.version>
<lombok.version>1.18.22</lombok.version> <lombok.version>1.18.22</lombok.version>
<camel-api.version>3.12.0</camel-api.version>
<junit.version>5.8.2</junit.version> <junit.version>5.8.2</junit.version>
<assertj.version>3.18.1</assertj.version> <assertj.version>3.18.1</assertj.version>
</properties> </properties>
@ -36,11 +35,34 @@
<groupId>com.taskadapter</groupId> <groupId>com.taskadapter</groupId>
<artifactId>trello-java-wrapper</artifactId> <artifactId>trello-java-wrapper</artifactId>
<version>${trello-java-wrapper.version}</version> <version>${trello-java-wrapper.version}</version>
<exclusions>
<exclusion>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
</exclusion>
<exclusion>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-core</artifactId>
</exclusion>
<exclusion>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-annotations</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.httpcomponents</groupId>
<artifactId>httpmime</artifactId>
</exclusion>
</exclusions>
</dependency> </dependency>
<dependency> <dependency>
<groupId>org.apache.camel</groupId> <groupId>com.fasterxml.jackson.core</groupId>
<artifactId>camel-api</artifactId> <artifactId>jackson-databind</artifactId>
<version>${camel-api.version}</version> <version>2.13.1</version>
</dependency>
<dependency>
<groupId>org.apache.httpcomponents</groupId>
<artifactId>httpmime</artifactId>
<version>4.5.13</version>
</dependency> </dependency>
<dependency> <dependency>

View file

@ -1,7 +1,5 @@
package net.kemitix.trello; package net.kemitix.trello;
import org.apache.camel.Header;
import java.util.Objects; import java.util.Objects;
public class LoadCard { public class LoadCard {
@ -12,7 +10,7 @@ public class LoadCard {
this.trelloBoard = trelloBoard; this.trelloBoard = trelloBoard;
} }
public TrelloCard loadCard(@Header("SlushyCardId") String cardId) { public TrelloCard loadCard(String cardId) {
return Objects.requireNonNull( return Objects.requireNonNull(
trelloBoard.getCard(cardId), trelloBoard.getCard(cardId),
"Card Not Found" "Card Not Found"