Skip to content

feat(core): update pom regarding possible issue#86

Merged
RVANDO12 merged 1 commit into
mainfrom
security/recommandation
Jul 1, 2026
Merged

feat(core): update pom regarding possible issue#86
RVANDO12 merged 1 commit into
mainfrom
security/recommandation

Conversation

@RVANDO12

@RVANDO12 RVANDO12 commented Jun 30, 2026

Copy link
Copy Markdown
Collaborator

PR Description

Internal sast / dast scanner reveal some issue in dependencies currently used in idp core :

Files Affected
Target Files: pom.xml

if modification of dependencies need code modification, we create a sub task to explain impact

Action without impact
Spring 4.0.5 ==> 4.0.1

netty 4.2.12 ==> 4.2.15.final

spring.security 7.0.4 ==> 7.0.5 / 7.1.0

spring framework 7.0.6 ==> 7.0.8

postgresql 42.7..10 ==> 42.7.11

nimbus-jose-jwt 9.28 ==> 10.9.1

Review

The reviewer must double-check these points:

  • The reviewer has tested the feature
  • The reviewer has reviewed the implementation of the feature
  • The documentation has been updated
  • The feature implementation respects the Technical Doc / ADR previously produced
  • The Pull Request title has a ! after the type/scope to identify the breaking
    change in the release note and ensure we will release a major version.

How to test

Update without regression on usage

@sonarqubecloud

Copy link
Copy Markdown

@github-code-quality

Copy link
Copy Markdown

Code Coverage Overview

Languages: Java

Java / code-coverage/jacoco

The overall coverage remains at 90%, unchanged from the branch.


Code Coverage is in Public Preview. Learn more and provide us with your feedback.

@RVANDO12 RVANDO12 merged commit 379c77e into main Jul 1, 2026
17 checks passed
@RVANDO12 RVANDO12 deleted the security/recommandation branch July 1, 2026 05:59
@RVANDO12 RVANDO12 changed the title feat(core): update pom regarding wizz recommandation feat(core): update pom regarding possible issue Jul 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants