Update dependencies for ingest-attachment plugin. (#666)
This PR resolves the CVEs for dependencies in the ingest-attachment plugin. tika : '1.24' -> '1.24.1' (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9489) pdfbox : '2.0.19' -> '2.0.23' (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27807) commons-io:commons-io : '2.6' -> '2.7' (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29425) Signed-off-by: Rabi Panda <adnapibar@gmail.com>
This commit is contained in:
Rabi Panda
GitHub
parent
58f9aaccb0
commit
0e180f4703
|
|
@ -38,8 +38,8 @@ opensearchplugin {
|
|||
}
|
||||
|
||||
versions << [
|
||||
'tika' : '1.24',
|
||||
'pdfbox': '2.0.19',
|
||||
'tika' : '1.24.1',
|
||||
'pdfbox': '2.0.23',
|
||||
'poi' : '4.1.2',
|
||||
'mime4j': '0.8.3'
|
||||
]
|
||||
|
|
@ -50,7 +50,7 @@ dependencies {
|
|||
// build against Jackson 2.9.5, but still works on our current version
|
||||
api "org.apache.tika:tika-parsers:${versions.tika}"
|
||||
api 'org.tukaani:xz:1.8'
|
||||
api 'commons-io:commons-io:2.6'
|
||||
api 'commons-io:commons-io:2.7'
|
||||
api "org.slf4j:slf4j-api:${versions.slf4j}"
|
||||
|
||||
// character set detection
|
||||
|
|
|
|||
|
|
@ -1 +0,0 @@
|
|||
815893df5f31da2ece4040fe0a12fd44b577afaf
|
||||
|
|
@ -0,0 +1 @@
|
|||
3f2bd4ba11c4162733c13cc90ca7c7ea09967102
|
||||
|
|
@ -1 +0,0 @@
|
|||
b8b3873aacde51f1a3f4a052b236de828867d000
|
||||
|
|
@ -0,0 +1 @@
|
|||
1a6b960dd2c1b1f8a5f5d6668b2930b50ff4324d
|
||||
|
|
@ -1 +0,0 @@
|
|||
8dfcfc278b4b66e1a8b0e9e681b84ffe48da2c21
|
||||
|
|
@ -0,0 +1 @@
|
|||
b89643d162c4e30b4fe39cfa265546cc506d4d18
|
||||
|
|
@ -0,0 +1 @@
|
|||
703e65fb300d1425d4ad7b68c21c7795bb7a95c3
|
||||
|
|
@ -1 +0,0 @@
|
|||
ed2e85f034743ea8e7ff25ab594caf361c408a44
|
||||
|
|
@ -0,0 +1 @@
|
|||
02ce8d709cef4ed6a1a51ff14ba15b2ba2e76f09
|
||||
|
|
@ -1 +0,0 @@
|
|||
282c0ecd31cb235f7d96bef18b8cdcb56573a195
|
||||
Loading…
Reference in New Issue