generated from finos-labs/project-blueprint
-
Notifications
You must be signed in to change notification settings - Fork 122
Expand file tree
/
Copy pathbuild.gradle
More file actions
54 lines (42 loc) · 1.68 KB
/
build.gradle
File metadata and controls
54 lines (42 loc) · 1.68 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
/*
* This file was generated by the Gradle 'init' task.
*
* This is a general purpose Gradle build.
* Learn more about Gradle by exploring our samples at https://docs.gradle.org/8.0.2/samples
*/
plugins {
id 'java'
id 'org.springframework.boot' version '3.5.7'
id 'io.spring.dependency-management' version '1.1.7'
}
group = 'finos.traderx.trade-processor'
version = '0.0.1-SNAPSHOT'
java {
sourceCompatibility = JavaVersion.VERSION_21
}
dependencies {
implementation 'org.springframework.boot:spring-boot-starter-data-jpa'
implementation 'org.springframework.boot:spring-boot-starter-web'
implementation 'com.h2database:h2:2.4.240'
implementation ('org.springdoc:springdoc-openapi-starter-webmvc-ui:2.8.14') {
exclude group: 'org.webjars', module: 'swagger-ui'
}
implementation 'org.webjars:swagger-ui:5.30.2'
implementation('org.json:json:20250517') {
because 'previous versions are affected by multiple CVE'
}
implementation ('io.socket:socket.io-client:2.1.2') {
exclude group: 'org.json', module: 'json'
}
// Override okhttp and okio versions to address vulnerabilities
implementation 'com.squareup.okhttp3:okhttp:5.3.0' // Latest version
// Add compatible logback-classic version
implementation 'ch.qos.logback:logback-core:1.5.21'
implementation 'ch.qos.logback:logback-classic:1.5.21' // Ensure compatibility
// Override commons-lang3 to fix CVE-2025-48924
implementation 'org.apache.commons:commons-lang3:3.18.0' // Latest version to fix CVE-2025-48924
testImplementation 'org.springframework.boot:spring-boot-starter-test'
}
tasks.withType(Test).configureEach {
useJUnitPlatform()
}