This is an automated email from the ASF dual-hosted git repository. krisden pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/knox.git
commit 447f9539f95782890ac9f2e07b3a6a06ee9d7403 Author: Kevin Risden <kris...@apache.org> AuthorDate: Wed Dec 16 14:20:55 2020 -0500 KNOX-2514 - Upgrade spotbugs to 4.2.0 --- build-tools/src/main/resources/build-tools/spotbugs-filter.xml | 10 ++++++++++ pom.xml | 2 +- 2 files changed, 11 insertions(+), 1 deletion(-) diff --git a/build-tools/src/main/resources/build-tools/spotbugs-filter.xml b/build-tools/src/main/resources/build-tools/spotbugs-filter.xml index 80057e5..1af4408 100644 --- a/build-tools/src/main/resources/build-tools/spotbugs-filter.xml +++ b/build-tools/src/main/resources/build-tools/spotbugs-filter.xml @@ -80,4 +80,14 @@ limitations under the License. <Class name="org.apache.knox.gateway.performance.test.PerformanceTestConfiguration" /> <Bug pattern="PATH_TRAVERSAL_IN" /> </Match> + + <Match> + <Class name="org.apache.knox.gateway.audit.log4j.correlation.Log4jCorrelationContext" /> + <Bug pattern="OBJECT_DESERIALIZATION" /> + </Match> + + <Match> + <Class name="org.apache.knox.gateway.audit.log4j.correlation.Log4jCorrelationService" /> + <Bug pattern="OBJECT_DESERIALIZATION" /> + </Match> </FindBugsFilter> diff --git a/pom.xml b/pom.xml index 6c96da2..c4e1eb0 100644 --- a/pom.xml +++ b/pom.xml @@ -256,7 +256,7 @@ <shrinkwrap.version>1.2.6</shrinkwrap.version> <shrinkwrap.descriptors.version>2.0.0</shrinkwrap.descriptors.version> <slf4j.version>1.7.30</slf4j.version> - <spotbugs.version>4.1.2</spotbugs.version> + <spotbugs.version>4.2.0</spotbugs.version> <spotbugs-maven-plugin.version>4.1.4</spotbugs-maven-plugin.version> <spring.version>5.3.2</spring.version> <spring-vault.version>2.2.3.RELEASE</spring-vault.version>