[PRODSEC-9150] fix for snappy vulnerability

2025-05-12 17:05:08 +00:00 · 2024-06-17 10:41:50 +05:30 · 2024-06-17 10:41:50 +05:30 · f7e940c25e
commit f7e940c25e
parent 459e3f1424
1 changed files with 11 additions and 0 deletions
--- a/plugins/alfresco-maven-plugin/pom.xml
+++ b/plugins/alfresco-maven-plugin/pom.xml
@ -93,6 +93,17 @@
            <groupId>org.codehaus.plexus</groupId>
            <artifactId>plexus-archiver</artifactId>
            <version>4.9.2</version>
+            <exclusions>
+                <exclusion>
+                    <groupId>org.iq80.snappy</groupId>
+                    <artifactId>snappy</artifactId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <dependency>
+            <groupId>org.iq80.snappy</groupId>
+            <artifactId>snappy</artifactId>
+            <version>0.5</version>
        </dependency>
        <dependency>
            <groupId>org.apache.maven</groupId>