[aries-rsa] branch master updated: Use HTTPS instead of HTTP to resolve dependencies (#41)
This is an automated email from the ASF dual-hosted git repository. cschneider pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/aries-rsa.git The following commit(s) were added to refs/heads/master by this push: new 0e22df9 Use HTTPS instead of HTTP to resolve dependencies (#41) 0e22df9 is described below commit 0e22df9a4f6d4298dd0189dddb34f57530328c92 Author: Jonathan Leitschuh AuthorDate: Wed Mar 4 03:31:10 2020 -0500 Use HTTPS instead of HTTP to resolve dependencies (#41) This fixes a security vulnerability in this project where the `pom.xml` files were configuring Maven to resolve dependencies over HTTP instead of HTTPS. Signed-off-by: Jonathan Leitschuh --- parent/pom.xml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/parent/pom.xml b/parent/pom.xml index 2c4fc66..870d6ec 100644 --- a/parent/pom.xml +++ b/parent/pom.xml @@ -311,7 +311,7 @@ apache.snapshots Apache Maven Snapshot Repository -http://repository.apache.org/content/groups/snapshots/ +https://repository.apache.org/content/groups/snapshots/ false @@ -326,7 +326,7 @@ apache.snapshots Apache Maven Snapshot Repository -http://repository.apache.org/content/groups/snapshots/ +https://repository.apache.org/content/groups/snapshots/ default true
[aries-journaled-events] branch master updated: Use HTTPS instead of HTTP to resolve dependencies (#22)
This is an automated email from the ASF dual-hosted git repository. cschneider pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/aries-journaled-events.git The following commit(s) were added to refs/heads/master by this push: new c297a41 Use HTTPS instead of HTTP to resolve dependencies (#22) c297a41 is described below commit c297a412e9d865f4f914ee389ea8905474caf5bd Author: Jonathan Leitschuh AuthorDate: Wed Mar 4 03:24:22 2020 -0500 Use HTTPS instead of HTTP to resolve dependencies (#22) This fixes a security vulnerability in this project where the `pom.xml` files were configuring Maven to resolve dependencies over HTTP instead of HTTPS. Signed-off-by: Jonathan Leitschuh --- pom.xml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pom.xml b/pom.xml index 6366297..9094ea9 100644 --- a/pom.xml +++ b/pom.xml @@ -274,7 +274,7 @@ apache.snapshots Apache Maven Snapshot Repository -http://repository.apache.org/content/groups/snapshots/ +https://repository.apache.org/content/groups/snapshots/ false @@ -289,7 +289,7 @@ apache.snapshots Apache Maven Snapshot Repository -http://repository.apache.org/content/groups/snapshots/ +https://repository.apache.org/content/groups/snapshots/ default true
