From dae810c10660c3622fea5bab3d3be8d8129eec72 Mon Sep 17 00:00:00 2001
From: "mend-for-github-com[bot]"
 <50673670+mend-for-github-com[bot]@users.noreply.github.com>
Date: Mon, 8 Jul 2024 08:21:54 -0700
Subject: [PATCH] Update dependency org.apache.httpcomponents.core5:httpcore5
 to v5.2.5 (#754)

* Update dependency org.apache.httpcomponents.core5:httpcore5 to v5.2.5

Signed-off-by: mend-for-github-com[bot] <mend-for-github-com[bot]@users.noreply.github.com>

* Force dependency version

Signed-off-by: Daniel Widdis <widdis@gmail.com>

---------

Signed-off-by: mend-for-github-com[bot] <mend-for-github-com[bot]@users.noreply.github.com>
Signed-off-by: Daniel Widdis <widdis@gmail.com>
Co-authored-by: mend-for-github-com[bot] <50673670+mend-for-github-com[bot]@users.noreply.github.com>
Co-authored-by: Daniel Widdis <widdis@gmail.com>
---
 build.gradle | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/build.gradle b/build.gradle
index 42cea8176..675f10749 100644
--- a/build.gradle
+++ b/build.gradle
@@ -174,7 +174,7 @@ dependencies {
     implementation "org.opensearch:common-utils:${common_utils_version}"
     implementation 'com.amazonaws:aws-encryption-sdk-java:2.4.1'
     implementation 'org.bouncycastle:bcprov-jdk18on:1.78.1'
-    api "org.apache.httpcomponents.core5:httpcore5:5.2.2"
+    api "org.apache.httpcomponents.core5:httpcore5:5.2.5"
     implementation "jakarta.json.bind:jakarta.json.bind-api:3.0.1"
     implementation "org.glassfish:jakarta.json:2.0.1"
     implementation "org.eclipse:yasson:3.0.3"
@@ -190,6 +190,7 @@ dependencies {
             force("com.google.guava:guava:33.2.1-jre") // CVE for 31.1, keep to force transitive dependencies
             force("org.eclipse.platform:org.eclipse.core.runtime:3.31.0") // CVE for < 3.29.0
             force("com.fasterxml.jackson.core:jackson-core:2.17.2") // Dependency Jar Hell
+            force("org.apache.httpcomponents.core5:httpcore5:5.2.5") // Dependency Jar Hell
         }
     }
 }