[knox] 14/15: KNOX-2514 - Upgrade spotbugs to 4.2.0

krisden Mon, 21 Dec 2020 12:56:11 -0800

This is an automated email from the ASF dual-hosted git repository.

krisden pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/knox.git


commit 447f9539f95782890ac9f2e07b3a6a06ee9d7403
Author: Kevin Risden <kris...@apache.org>
AuthorDate: Wed Dec 16 14:20:55 2020 -0500

    KNOX-2514 - Upgrade spotbugs to 4.2.0
---
 build-tools/src/main/resources/build-tools/spotbugs-filter.xml | 10 ++++++++++
 pom.xml                                                        |  2 +-
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/build-tools/src/main/resources/build-tools/spotbugs-filter.xml 
b/build-tools/src/main/resources/build-tools/spotbugs-filter.xml
index 80057e5..1af4408 100644
--- a/build-tools/src/main/resources/build-tools/spotbugs-filter.xml
+++ b/build-tools/src/main/resources/build-tools/spotbugs-filter.xml
@@ -80,4 +80,14 @@ limitations under the License.
     <Class 
name="org.apache.knox.gateway.performance.test.PerformanceTestConfiguration" />
     <Bug pattern="PATH_TRAVERSAL_IN" />
   </Match>
+
+  <Match>
+    <Class 
name="org.apache.knox.gateway.audit.log4j.correlation.Log4jCorrelationContext" 
/>
+    <Bug pattern="OBJECT_DESERIALIZATION" />
+  </Match>
+
+  <Match>
+    <Class 
name="org.apache.knox.gateway.audit.log4j.correlation.Log4jCorrelationService" 
/>
+    <Bug pattern="OBJECT_DESERIALIZATION" />
+  </Match>
 </FindBugsFilter>
diff --git a/pom.xml b/pom.xml
index 6c96da2..c4e1eb0 100644
--- a/pom.xml
+++ b/pom.xml
@@ -256,7 +256,7 @@
         <shrinkwrap.version>1.2.6</shrinkwrap.version>
         <shrinkwrap.descriptors.version>2.0.0</shrinkwrap.descriptors.version>
         <slf4j.version>1.7.30</slf4j.version>
-        <spotbugs.version>4.1.2</spotbugs.version>
+        <spotbugs.version>4.2.0</spotbugs.version>
         <spotbugs-maven-plugin.version>4.1.4</spotbugs-maven-plugin.version>
         <spring.version>5.3.2</spring.version>
         <spring-vault.version>2.2.3.RELEASE</spring-vault.version>

[knox] 14/15: KNOX-2514 - Upgrade spotbugs to 4.2.0

Reply via email to