From c35e428071b2e49f6595126f0d44c0efb37cb9a4 Mon Sep 17 00:00:00 2001
From: AWSHurneyt <hurneyt@amazon.com>
Date: Tue, 27 Feb 2024 17:49:34 -0800
Subject: [PATCH] Adjusted dependency versions to address CVEs. (#1447)

* Adjusted dependency versions to address CVEs.

Signed-off-by: AWSHurneyt <hurneyt@amazon.com>

* Adjusted com.github.seancfoley:ipaddress version to address CVE.

Signed-off-by: AWSHurneyt <hurneyt@amazon.com>

* Adjusted ktlint dependencies to address CVE.

Signed-off-by: AWSHurneyt <hurneyt@amazon.com>

---------

Signed-off-by: AWSHurneyt <hurneyt@amazon.com>
---
 alerting/build.gradle | 2 +-
 build.gradle          | 4 ++++
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/alerting/build.gradle b/alerting/build.gradle
index 53ae13cce..7fa72b0a7 100644
--- a/alerting/build.gradle
+++ b/alerting/build.gradle
@@ -101,7 +101,7 @@ dependencies {
 
     compile project(":alerting-core")
     compile project(":alerting-notification")
-    implementation "com.github.seancfoley:ipaddress:5.3.3"
+    implementation "com.github.seancfoley:ipaddress:5.4.2"
 
     testImplementation "org.jetbrains.kotlin:kotlin-test:${kotlin_version}"
     testCompile "org.mockito:mockito-core:3.12.4"
diff --git a/build.gradle b/build.gradle
index b52f1e71c..df14562f1 100644
--- a/build.gradle
+++ b/build.gradle
@@ -44,7 +44,11 @@ dependencies {
         attributes {
             attribute(Bundling.BUNDLING_ATTRIBUTE, objects.named(Bundling, Bundling.EXTERNAL))
         }
+        exclude group: "ch.qos.logback", module: "logback-classic"
+        exclude group: "ch.qos.logback", module: "logback-core"
     }
+    add("ktlint", "ch.qos.logback:logback-core:1.2.13")
+    add("ktlint", "ch.qos.logback:logback-classic:1.2.13")
 }
 
 task ktlint(type: JavaExec, group: "verification") {