[MNG-6886] upgrade plexus-cipher to 1.8 and update changed groupId (#335)

Signed-off-by: olivier lamy <olamy@apache.org>
2020-04-10 09:17:25 +10:00 · 2020-04-10 09:17:25 +10:00 · af1bf4c8b4
parent bf7b99ab59
commit af1bf4c8b4
5 changed files with 49 additions and 3 deletions
--- a/apache-maven/pom.xml
+++ b/apache-maven/pom.xml
@ -113,6 +113,10 @@ under the License.
      <groupId>org.fusesource.jansi</groupId>
      <artifactId>jansi</artifactId>
    </dependency>
+    <dependency>
+      <groupId>org.codehaus.plexus</groupId>
+      <artifactId>plexus-cipher</artifactId>
+    </dependency>
  </dependencies>

  <build>
--- a/maven-compat/pom.xml
+++ b/maven-compat/pom.xml
@ -99,6 +99,11 @@ under the License.
      <artifactId>wagon-provider-api</artifactId>
    </dependency>

+    <dependency>
+      <groupId>org.codehaus.plexus</groupId>
+      <artifactId>plexus-cipher</artifactId>
+      <scope>test</scope>
+    </dependency>
    <dependency>
      <groupId>org.apache.maven.wagon</groupId>
      <artifactId>wagon-file</artifactId>
--- a/maven-core/pom.xml
+++ b/maven-core/pom.xml
@ -118,6 +118,11 @@ under the License.
      <groupId>org.codehaus.plexus</groupId>
      <artifactId>plexus-classworlds</artifactId>
    </dependency>
+    <dependency>
+      <groupId>org.codehaus.plexus</groupId>
+      <artifactId>plexus-cipher</artifactId>
+      <scope>test</scope>
+    </dependency>
    <dependency>
      <groupId>org.apache.commons</groupId>
      <artifactId>commons-lang3</artifactId>
--- a/maven-embedder/pom.xml
+++ b/maven-embedder/pom.xml
@ -135,7 +135,7 @@ under the License.
      <artifactId>plexus-sec-dispatcher</artifactId>
    </dependency>
    <dependency>
-      <groupId>org.sonatype.plexus</groupId>
+      <groupId>org.codehaus.plexus</groupId>
      <artifactId>plexus-cipher</artifactId>
    </dependency>
    <dependency>
--- a/pom.xml
+++ b/pom.xml
@ -62,7 +62,7 @@ under the License.
    <wagonVersion>3.3.4</wagonVersion>
    <jsoupVersion>1.12.1</jsoupVersion>
    <securityDispatcherVersion>1.4</securityDispatcherVersion>
-    <cipherVersion>1.7</cipherVersion>
+    <cipherVersion>1.8</cipherVersion>
    <modelloVersion>1.11</modelloVersion>
    <jxpathVersion>1.3</jxpathVersion>
    <resolverVersion>1.4.1</resolverVersion>
@ -395,9 +395,15 @@ under the License.
        <groupId>org.sonatype.plexus</groupId>
        <artifactId>plexus-sec-dispatcher</artifactId>
        <version>${securityDispatcherVersion}</version>
+        <exclusions>
+          <exclusion>
+            <groupId>org.sonatype.plexus</groupId>
+            <artifactId>plexus-cipher</artifactId>
+          </exclusion>
+        </exclusions>
      </dependency>
      <dependency>
-        <groupId>org.sonatype.plexus</groupId>
+        <groupId>org.codehaus.plexus</groupId>
        <artifactId>plexus-cipher</artifactId>
        <version>${cipherVersion}</version>
      </dependency>
@ -617,6 +623,32 @@ under the License.
          </excludes>
        </configuration>
      </plugin>
+      <plugin>
+        <groupId>org.apache.maven.plugins</groupId>
+        <artifactId>maven-enforcer-plugin</artifactId>
+        <executions>
+          <execution>
+            <goals>
+              <goal>enforce</goal>
+            </goals>
+            <phase>validate</phase>
+            <id>ensure-no-org.sonatype:plexus-cipher</id>
+            <configuration>
+              <rules>
+                <bannedDependencies>
+                  <excludes>
+                    <exclude>org.sonatype.plexus:plexus-cipher</exclude>
+                  </excludes>
+                  <message>
+                    ensure no more org.sonatype.plexus:plexus-cipher as groupId changed. you have to add some exclusions.
+                  </message>
+                </bannedDependencies>
+              </rules>
+              <fail>true</fail>
+            </configuration>
+          </execution>
+        </executions>
+      </plugin>
    </plugins>
  </build>