From 62fc80dfa589d0b7690c89237f4f6198d8d3b571 Mon Sep 17 00:00:00 2001 From: Divya Madala Date: Tue, 17 Dec 2024 11:33:33 -0800 Subject: [PATCH] Fix script-security CVE Signed-off-by: Divya Madala --- build.gradle | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index f51deaa84e..bf5a8e2d54 100644 --- a/build.gradle +++ b/build.gradle @@ -31,6 +31,7 @@ dependencies { testImplementation group: 'junit', name: 'junit', version: '4.13.2' implementation group: 'org.codehaus.groovy', name: 'groovy-all', version: '3.0.14', ext: 'pom' implementation group: 'com.cloudbees', name: 'groovy-cps', version: '1.31' + implementation 'com.github.ben-manes.caffeine:caffeine:2.9.3' testImplementation group: 'org.yaml', name: 'snakeyaml', version: '2.0' testImplementation group: 'org.assertj', name: 'assertj-core', version: '3.4.1' testImplementation group: 'com.lesfurets', name:'jenkins-pipeline-unit', version: '1.13' @@ -44,6 +45,7 @@ configurations.all { force group: 'com.google.errorprone', name: 'error_prone_annotations', version: '2.18.0' force group: 'org.checkerframework', name: 'checker-qual', version: '3.33.0' force group: 'com.google.j2objc', name: 'j2objc-annotations', version: '2.8' + force group: 'com.github.ben-manes.caffeine', name:'caffeine', version: '2.9.3' force group: 'org.jenkins-ci.plugins', name: 'durable-task', version: '547.vd1ea_007d100c' } } @@ -72,7 +74,7 @@ sharedLibrary { dependency('io.jenkins.plugins', 'pipeline-groovy-lib', '613.v9c41a_160233f') dependency('org.jenkins-ci.plugins.workflow', 'workflow-multibranch', '2.26.1') dependency('org.jenkins-ci.plugins', 'pipeline-input-step', '456.vd8a_957db_5b_e9') // https://repo.jenkins-ci.org/public/org/jenkins-ci/plugins/pipeline-input-step/ - dependency('org.jenkins-ci.plugins', 'script-security', '1229.v4880b_b_e905a_6') + dependency('org.jenkins-ci.plugins', 'script-security', '1368.vb_b_402e3547e7') dependency('org.jenkins-ci.plugins', 'credentials', '1112.vc87b_7a_3597f6') dependency('org.jenkins-ci.plugins', 'git-client', '3.11.1') dependency('org.apache.sshd', 'sshd-core', '2.12.1')