From 96fea3e84036d802cd8ff216096a34a49aa4d41b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 28 Jun 2025 14:39:55 +0000 Subject: [PATCH] Bump org.eclipse.jetty.aggregate:jetty-all Bumps org.eclipse.jetty.aggregate:jetty-all from 7.0.0.v20091005 to 9.4.57.v20241219. --- updated-dependencies: - dependency-name: org.eclipse.jetty.aggregate:jetty-all dependency-version: 9.4.57.v20241219 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- build.gradle | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/build.gradle b/build.gradle index 760a4c7..27ed6bf 100644 --- a/build.gradle +++ b/build.gradle @@ -348,7 +348,7 @@ dependencies { implementation('javax.annotation:javax.annotation-api:1.3.2') implementation('joda-time:joda-time:2.2') // this is OOOOOOLD. But that probably means updating java_common - implementation('org.eclipse.jetty.aggregate:jetty-all:7.0.0.v20091005') + implementation('org.eclipse.jetty.aggregate:jetty-all:9.4.57.v20241219') // TODO DEPS Need to rework the java common logger to not use syslog4j at all since it's // abandonware and has a ton of CVEs, even in the newer versions. // Note that the java SDK modules use syslog4j, so we'll need to figure something out @@ -383,7 +383,7 @@ dependencies { generatedCodeClasspath('joda-time:joda-time:2.2') generatedCodeClasspath('junit:junit:4.12') generatedCodeClasspath('net.java.dev.jna:jna:3.4.0') - generatedCodeClasspath('org.eclipse.jetty.aggregate:jetty-all:7.0.0.v20091005') + generatedCodeClasspath('org.eclipse.jetty.aggregate:jetty-all:9.4.57.v20241219') generatedCodeClasspath('org.hamcrest:hamcrest-core:1.3') generatedCodeClasspath('org.ini4j:ini4j:0.5.2') generatedCodeClasspath('org.syslog4j:syslog4j:0.9.46')