accepted
merge request
!37
"Updated branch restriction on deploy job from trunk to main"
at
adi-ia / uw-spring-security
-
936fc3a8 · Merge branch 'update_deployment_job' into 'main'
- ... and 1 more commit. Compare 7a43b6b8...936fc3a8
approved
merge request
!37
"Updated branch restriction on deploy job from trunk to main"
at
adi-ia / uw-spring-security
opened
merge request
!37
"Updated branch restriction on deploy job from trunk to main"
at
adi-ia / uw-spring-security
-
7a43b6b8 · Merge branch 'dependency_updates' into 'main'
- ... and 1 more commit. Compare 29d8527d...7a43b6b8
accepted
merge request
!36
"Dependency updates to eliminate vulnerabilities discovered by dependency-check"
at
adi-ia / uw-spring-security
approved
merge request
!36
"Dependency updates to eliminate vulnerabilities discovered by dependency-check"
at
adi-ia / uw-spring-security
commented on
merge request !36
"Dependency updates to eliminate vulnerabilities discovered by dependency-check"
at
adi-ia / uw-spring-security
Regarding the Jackson vulnerabilities. What's odd is that it states that we need to update to 2.14.0-rc1 or higher, but we did and are still gettin...
approved
merge request
!36
"Dependency updates to eliminate vulnerabilities discovered by dependency-check"
at
adi-ia / uw-spring-security
commented on
merge request !36
"Dependency updates to eliminate vulnerabilities discovered by dependency-check"
at
adi-ia / uw-spring-security
Silence Maven warning "[WARNING] File encoding has not been set, using platform encoding UTF-8, i.e. build is platform dependent!"...
commented on
merge request !36
"Dependency updates to eliminate vulnerabilities discovered by dependency-check"
at
adi-ia / uw-spring-security
Since we're no longer using the dependency-check maven plugin, this file can probably be deleted and suppressions can be handled in GitLab.
commented on
merge request !36
"Dependency updates to eliminate vulnerabilities discovered by dependency-check"
at
adi-ia / uw-spring-security
This avoids warnings because ./target/ doesn't exist in multi-module projects, covers build artifacts for later jobs, and I think these dependency-...