From e7a92d68da807bee1e06fbe3d38a01f648f1e35c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 12 Oct 2022 22:04:58 +0000 Subject: [PATCH 01/14] fix: upgrade org.apache.logging.log4j:log4j-jcl from 2.18.0 to 2.19.0 Snyk has created this PR to upgrade org.apache.logging.log4j:log4j-jcl from 2.18.0 to 2.19.0. See this package in Maven Repository: https://mvnrepository.com/artifact/org.apache.logging.log4j/log4j-jcl/ See this project in Snyk: https://app.snyk.io/org/jshook/project/295d8464-4e54-4338-80e7-65616195d785?utm_source=github&utm_medium=referral&page=upgrade-pr --- mvn-defaults/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mvn-defaults/pom.xml b/mvn-defaults/pom.xml index 8a92d2233..22cac957f 100644 --- a/mvn-defaults/pom.xml +++ b/mvn-defaults/pom.xml @@ -413,7 +413,7 @@ org.apache.logging.log4j log4j-jcl - 2.18.0 + 2.19.0 From dc4c92ecab37721f60d1c02dcd3bab641c16cdef Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 12 Oct 2022 22:05:02 +0000 Subject: [PATCH 02/14] fix: upgrade org.apache.logging.log4j:log4j-api from 2.18.0 to 2.19.0 Snyk has created this PR to upgrade org.apache.logging.log4j:log4j-api from 2.18.0 to 2.19.0. See this package in Maven Repository: https://mvnrepository.com/artifact/org.apache.logging.log4j/log4j-api/ See this project in Snyk: https://app.snyk.io/org/jshook/project/295d8464-4e54-4338-80e7-65616195d785?utm_source=github&utm_medium=referral&page=upgrade-pr --- mvn-defaults/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mvn-defaults/pom.xml b/mvn-defaults/pom.xml index 8a92d2233..bdce2c3a7 100644 --- a/mvn-defaults/pom.xml +++ b/mvn-defaults/pom.xml @@ -396,7 +396,7 @@ org.apache.logging.log4j log4j-api - 2.18.0 + 2.19.0 From 706880c017db1b6ee028841e38ce595a77d9a26f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 12 Oct 2022 22:05:06 +0000 Subject: [PATCH 03/14] fix: upgrade org.apache.logging.log4j:log4j-core from 2.18.0 to 2.19.0 Snyk has created this PR to upgrade org.apache.logging.log4j:log4j-core from 2.18.0 to 2.19.0. See this package in Maven Repository: https://mvnrepository.com/artifact/org.apache.logging.log4j/log4j-core/ See this project in Snyk: https://app.snyk.io/org/jshook/project/295d8464-4e54-4338-80e7-65616195d785?utm_source=github&utm_medium=referral&page=upgrade-pr --- mvn-defaults/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mvn-defaults/pom.xml b/mvn-defaults/pom.xml index 8a92d2233..5d0142d23 100644 --- a/mvn-defaults/pom.xml +++ b/mvn-defaults/pom.xml @@ -402,7 +402,7 @@ org.apache.logging.log4j log4j-core - 2.18.0 + 2.19.0 org.apache.logging.log4j From cb3191a1ac1d8c5181c41068b6b1ccd3a3a4b6d9 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 13 Oct 2022 06:55:22 +0000 Subject: [PATCH 04/14] fix: upgrade com.datastax.oss:pulsar-jms from 2.4.9 to 2.4.11 Snyk has created this PR to upgrade com.datastax.oss:pulsar-jms from 2.4.9 to 2.4.11. See this package in Maven Repository: https://mvnrepository.com/artifact/com.datastax.oss/pulsar-jms/ See this project in Snyk: https://app.snyk.io/org/jshook/project/eb02b5e3-2668-4f0f-a63a-47871c96a9ff?utm_source=github&utm_medium=referral&page=upgrade-pr --- driver-jms/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/driver-jms/pom.xml b/driver-jms/pom.xml index da63f5e39..c3cbcc803 100644 --- a/driver-jms/pom.xml +++ b/driver-jms/pom.xml @@ -92,7 +92,7 @@ com.datastax.oss pulsar-jms - 2.4.9 + 2.4.11 From 7e5bd8f7f17e4652d506763c8694999561eced8a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 13 Oct 2022 10:53:17 +0000 Subject: [PATCH 05/14] fix: upgrade com.datastax.oss:java-driver-core from 4.14.1 to 4.15.0 Snyk has created this PR to upgrade com.datastax.oss:java-driver-core from 4.14.1 to 4.15.0. See this package in Maven Repository: https://mvnrepository.com/artifact/com.datastax.oss/java-driver-core/ See this project in Snyk: https://app.snyk.io/org/jshook/project/f2d62bab-282e-4a32-8fb9-1a067980e81a?utm_source=github&utm_medium=referral&page=upgrade-pr --- adapter-cqld4/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adapter-cqld4/pom.xml b/adapter-cqld4/pom.xml index 7e1c79002..a0125cf8a 100644 --- a/adapter-cqld4/pom.xml +++ b/adapter-cqld4/pom.xml @@ -61,7 +61,7 @@ com.datastax.oss java-driver-core - 4.14.1 + 4.15.0 From 5cb5bd5b095109df9fd9a524b484f32b690684fb Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 14 Oct 2022 16:31:26 +0000 Subject: [PATCH 06/14] fix: mvn-defaults/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-3043138 --- mvn-defaults/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mvn-defaults/pom.xml b/mvn-defaults/pom.xml index 8a92d2233..5c6228c13 100644 --- a/mvn-defaults/pom.xml +++ b/mvn-defaults/pom.xml @@ -33,7 +33,7 @@ 1.9.0 3.12.0 3.6.1 - 1.9 + 1.10.0 3.1.0 3.2.13 1.13.0 From 49309872c90baf27e672646918f36dd9c70a92c9 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 17 Oct 2022 21:49:13 +0000 Subject: [PATCH 07/14] fix: engine-rest/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038424 - https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426 --- engine-rest/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/engine-rest/pom.xml b/engine-rest/pom.xml index b9139d677..c1b72cd64 100644 --- a/engine-rest/pom.xml +++ b/engine-rest/pom.xml @@ -23,7 +23,7 @@ io.swagger.parser.v3 swagger-parser - 2.1.2 + 2.1.4 From ad369143da3ea7d200508a3d36715fd17f23c2e7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 18 Oct 2022 05:54:56 +0000 Subject: [PATCH 08/14] fix: adapter-dynamodb/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426 --- adapter-dynamodb/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adapter-dynamodb/pom.xml b/adapter-dynamodb/pom.xml index 4c023eb6c..52c8cff6f 100644 --- a/adapter-dynamodb/pom.xml +++ b/adapter-dynamodb/pom.xml @@ -45,7 +45,7 @@ com.amazonaws aws-java-sdk-dynamodb - 1.12.299 + 1.12.322 From 75aa1e45cf96545438114f0d08f88bbd560be813 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 19 Oct 2022 22:22:01 +0000 Subject: [PATCH 09/14] fix: mvn-defaults/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052830 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052832 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052834 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052837 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052839 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052841 --- mvn-defaults/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mvn-defaults/pom.xml b/mvn-defaults/pom.xml index 8a92d2233..485dfa4b0 100644 --- a/mvn-defaults/pom.xml +++ b/mvn-defaults/pom.xml @@ -360,7 +360,7 @@ org.graalvm.sdk graal-sdk - 21.3.3 + 21.3.3.1 org.graalvm.js From e3187bc1e2d281f67f09715f02036dcace31d74e Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 20 Oct 2022 02:04:38 +0000 Subject: [PATCH 10/14] fix: mvn-defaults/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052830 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052832 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052834 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052837 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052839 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052841 --- mvn-defaults/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mvn-defaults/pom.xml b/mvn-defaults/pom.xml index 8a92d2233..688548bc1 100644 --- a/mvn-defaults/pom.xml +++ b/mvn-defaults/pom.xml @@ -365,7 +365,7 @@ org.graalvm.js js - 21.3.3 + 21.3.3.1 runtime From 3496f965c15af8a35e3d476c64af5812ce9ea76a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 20 Oct 2022 02:10:39 +0000 Subject: [PATCH 11/14] fix: mvn-defaults/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052830 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052832 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052834 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052837 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052839 - https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-3052841 --- mvn-defaults/pom.xml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/mvn-defaults/pom.xml b/mvn-defaults/pom.xml index 8a92d2233..a62ee2b66 100644 --- a/mvn-defaults/pom.xml +++ b/mvn-defaults/pom.xml @@ -365,13 +365,13 @@ org.graalvm.js js - 21.3.3 + 21.3.3.1 runtime org.graalvm.js js-scriptengine - 21.3.2.1 + 21.3.3.1 org.graalvm.tools From 60bd26104893e4e0d8500178c05b9fc24285601a Mon Sep 17 00:00:00 2001 From: Madhavan Sridharan Date: Thu, 20 Oct 2022 08:57:53 -0400 Subject: [PATCH 12/14] Minor update to timeseries clustering index name --- .../resources/activities/baselinesv2/mongodb-timeseries2.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adapter-mongodb/src/main/resources/activities/baselinesv2/mongodb-timeseries2.yaml b/adapter-mongodb/src/main/resources/activities/baselinesv2/mongodb-timeseries2.yaml index ee0da264b..386c1a94f 100644 --- a/adapter-mongodb/src/main/resources/activities/baselinesv2/mongodb-timeseries2.yaml +++ b/adapter-mongodb/src/main/resources/activities/baselinesv2/mongodb-timeseries2.yaml @@ -93,7 +93,7 @@ blocks: key: { time: -1, }, - name: "tab_time_desc_idx", + name: "ts_time_desc_idx", unique: true } ], From c35ec732e79c77a46d224d017a4f06c8e3ae0eb8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 21 Oct 2022 02:49:12 +0000 Subject: [PATCH 13/14] fix: adapter-dynamodb/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426 --- adapter-dynamodb/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adapter-dynamodb/pom.xml b/adapter-dynamodb/pom.xml index 4c023eb6c..34eb12ec0 100644 --- a/adapter-dynamodb/pom.xml +++ b/adapter-dynamodb/pom.xml @@ -45,7 +45,7 @@ com.amazonaws aws-java-sdk-dynamodb - 1.12.299 + 1.12.325 From f875f2c7fa26b0da0f4a110ed1cd26100c8abb4a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 21 Oct 2022 23:05:30 +0000 Subject: [PATCH 14/14] fix: nb-api/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426 --- nb-api/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/nb-api/pom.xml b/nb-api/pom.xml index d311cf526..d2aea36ec 100644 --- a/nb-api/pom.xml +++ b/nb-api/pom.xml @@ -97,7 +97,7 @@ com.amazonaws aws-java-sdk-s3 - 1.12.300 + 1.12.325