OpenSearch/x-pack/plugin/security/cli
Ryan Ernst 37795d259a
Remove guava from transitive compile classpath (#54309) (#54695)
Guava was removed from Elasticsearch many years ago, but remnants of it
remain due to transitive dependencies. When a dependency pulls guava
into the compile classpath, devs can inadvertently begin using methods
from guava without realizing it. This commit moves guava to a runtime
dependency in the modules that it is needed.

Note that one special case is the html sanitizer in watcher. The third
party dep uses guava in the PolicyFactory class signature. However, only
calling a method on the PolicyFactory actually causes the class to be
loaded, a reference alone does not trigger compilation to look at the
class implementation. There we utilize a MethodHandle for invoking the
relevant method at runtime, where guava will continue to exist.
2020-04-07 23:20:17 -07:00
..
licenses Update BouncyCastle to 1.64 (#52185) (#52464) 2020-02-18 14:11:34 +02:00
src Update BouncyCastle to 1.64 (#52185) (#52464) 2020-02-18 14:11:34 +02:00
build.gradle Remove guava from transitive compile classpath (#54309) (#54695) 2020-04-07 23:20:17 -07:00