From 2b480c20ebc43688125342ed31878187f84ea95e Mon Sep 17 00:00:00 2001
From: Jan Vonka <jan.vonka@alfresco.com>
Date: Fri, 21 Sep 2018 11:27:25 +0100
Subject: [PATCH] ATS-128: fix build for T-Engines (Docker Transformers) due to
 whitesource policy violation - Apache Tika Parsers have option to use Bouncy
 Castle (BC) libraries for encrypted PDF - 1.54 to 1.60 (for CVE-2018-1000613
 - CVSS 3 score of 9.8)

---
 alfresco-docker-tika/pom.xml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/alfresco-docker-tika/pom.xml b/alfresco-docker-tika/pom.xml
index 4fd1d76c..71dc304f 100644
--- a/alfresco-docker-tika/pom.xml
+++ b/alfresco-docker-tika/pom.xml
@@ -75,9 +75,29 @@
                     <groupId>com.tdunning</groupId>
                     <artifactId>json</artifactId>
                 </exclusion>
+                <exclusion>
+                    <groupId>org.bouncycastle</groupId>
+                    <artifactId>bcprov-jdk15on</artifactId>
+                </exclusion>
+                <exclusion>
+                    <groupId>org.bouncycastle</groupId>
+                    <artifactId>bcmail-jdk15on</artifactId>
+                </exclusion>
             </exclusions>
         </dependency>
 
+        <!-- for Apache Tika Parsers - eg. encrypted PDF -->
+        <dependency>
+            <groupId>org.bouncycastle</groupId>
+            <artifactId>bcprov-jdk15on</artifactId>
+            <version>1.60</version>
+        </dependency>
+        <dependency>
+            <groupId>org.bouncycastle</groupId>
+            <artifactId>bcmail-jdk15on</artifactId>
+            <version>1.60</version>
+        </dependency>
+
         <!-- Apache POI -->
         <dependency>
             <groupId>org.apache.poi</groupId>