[DEVO-14127] bouncycastle version fix in cdp and emr

[smaring]

No description provided.

[hitachivantarasonarqube]

Quality Gate passed

Issues

• 0 New Issues
• 0 Fixed Issues
• 0 Accepted Issues

Measures

• 0 Security Hotspots
• No data about coverage
• 0.00% Duplicated Code (0.00% Estimated after merge)

Project ID: org.pentaho:pentaho-hadoop-shims

View in SonarQube

[Copilot]

Pull request overview

This PR updates the EMR 7.7.0 and CDP DC 7.1 shim reactor POMs to explicitly control the Bouncy Castle dependency versions via a single property, ensuring consistent resolution of the bcprov/bcmail/bcpkix/bcutil artifacts within those shim builds.

Changes:

• Add a bouncycastle.version property (set to 1.84) to the emr770 and cdpdc71 shim reactor POMs.
• Update Bouncy Castle entries in each reactor’s dependencyManagement to use ${bouncycastle.version} instead of the previous property reference.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.

File	Description
shims/emr770/pom.xml	Introduces bouncycastle.version and applies it to managed Bouncy Castle dependencies for the EMR 7.7.0 shim reactor.
shims/cdpdc71/pom.xml	Introduces bouncycastle.version and applies it to managed Bouncy Castle dependencies for the CDP DC 7.1 shim reactor.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[buildguy]

Note:

---

Frogbot also supports Contextual Analysis, Secret Detection, IaC and SAST Vulnerabilities Scanning. This features are included as part of the JFrog Advanced Security package, which isn't enabled on your system.

---

🐸 JFrog Frogbot

[buildguy]

✅ Build finished in 3m 57s

Build command:

mvn clean verify -B -e -Daudit -Djs.no.sandbox -pl \
shims/cdpdc71,shims/emr770

---

❗ No tests found!

ℹ️ This is an automatic message