From 983dfcd0c4eaa21b82ad349791886c709635b3a4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tommy=20Tr=C3=B8en?= <tommy.troen@nav.no>
Date: Thu, 15 Feb 2024 14:39:41 +0100
Subject: [PATCH] chore(deps): bump transitive dep jsonpath to 2.9.0 (#640)

* fix vulnerability https://github.com/navikt/mock-oauth2-server/security/dependabot/40
---
 build.gradle.kts | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/build.gradle.kts b/build.gradle.kts
index 958e2a2b..f3dbc727 100644
--- a/build.gradle.kts
+++ b/build.gradle.kts
@@ -16,6 +16,7 @@ val bouncyCastleVersion = "1.70"
 val springBootVersion = "3.2.2"
 val reactorTestVersion = "3.6.2"
 val ktorVersion = "2.3.8"
+val jsonPathVersion = "2.9.0"
 
 val mavenRepoBaseUrl = "https://oss.sonatype.org"
 val mainClassKt = "no.nav.security.mock.oauth2.StandaloneMockOAuth2ServerKt"
@@ -77,6 +78,13 @@ dependencies {
     testImplementation("org.springframework.boot:spring-boot-starter-oauth2-resource-server:$springBootVersion")
     testImplementation("org.springframework.boot:spring-boot-starter-oauth2-client:$springBootVersion")
     testImplementation("org.springframework.boot:spring-boot-starter-test:$springBootVersion")
+    constraints {
+        testImplementation("com.jayway.jsonpath:json-path") {
+            version {
+                require(jsonPathVersion)
+            }
+        }
+    }
     testImplementation("org.springframework.boot:spring-boot-test:$springBootVersion")
     constraints {
         testImplementation("org.yaml:snakeyaml:2.2") {