From 9067dcdc07fe93b72362b1a6eb46712664d21a27 Mon Sep 17 00:00:00 2001
From: Nico <5772511+Death111@users.noreply.github.com>
Date: Thu, 4 Jun 2026 18:28:39 +0200
Subject: [PATCH 1/3] update dependencies. remove sonar step in pipeline
---
.github/workflows/mavenCi.yml | 6 ------
pom.xml | 23 +++++++++--------------
2 files changed, 9 insertions(+), 20 deletions(-)
diff --git a/.github/workflows/mavenCi.yml b/.github/workflows/mavenCi.yml
index e3d7aace..24f2194a 100644
--- a/.github/workflows/mavenCi.yml
+++ b/.github/workflows/mavenCi.yml
@@ -44,12 +44,6 @@ jobs:
name: KeepTime-${{ env.version }}
path: /home/runner/work/KeepTime/KeepTime/target/*-bin.zip
- - name: Analyze
- env:
- GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
- run: mvn -V -B sonar:sonar -Dsonar.host.url=${{ secrets.HOST_URL }} -Dsonar.organization=${{ secrets.ORGANIZATION_NAME }} -Dsonar.projectKey=${{ secrets.PROJECT_KEY }} -Dsonar.java.binaries=. -Dsonar.qualitygate.wait=false
-
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
diff --git a/pom.xml b/pom.xml
index dd649d92..3871b65d 100644
--- a/pom.xml
+++ b/pom.xml
@@ -6,7 +6,7 @@
org.springframework.boot
spring-boot-starter-parent
- 3.4.4
+ 3.5.14
@@ -39,7 +39,7 @@
17
22
- 12.0.1
+ 12.2.2
ALL
true
@@ -103,7 +103,7 @@
org.springdoc
springdoc-openapi-starter-webmvc-ui
- 2.8.5
+ 2.8.17
org.springframework.boot
@@ -147,14 +147,9 @@
org.apache.maven.plugins
maven-assembly-plugin
- 3.7.1
+ 3.8.0
maven-plugin
-
- org.sonarsource.scanner.maven
- sonar-maven-plugin
- 3.11.0.3922
-
org.hamcrest
hamcrest-library
@@ -165,7 +160,7 @@
com.fasterxml.jackson.datatype
jackson-datatype-jsr310
- 2.18.2
+ 2.22.0
@@ -208,7 +203,7 @@
org.apache.maven.plugins
maven-site-plugin
- 3.12.1
+ 3.22.0
@@ -267,13 +262,13 @@
org.apache.maven.plugins
maven-compiler-plugin
- 3.11.0
+ 3.15.0
org.mapstruct
mapstruct-processor
- 1.5.5.Final
+ 1.6.3
@@ -281,7 +276,7 @@
org.jacoco
jacoco-maven-plugin
- 0.8.10
+ 0.8.14
prepare-agent
From 38555294023a4a285dafde51c40d8bf1914c6625 Mon Sep 17 00:00:00 2001
From: Nico <5772511+Death111@users.noreply.github.com>
Date: Thu, 4 Jun 2026 18:41:15 +0200
Subject: [PATCH 2/3] overwrite tomcat to patched version
---
pom.xml | 6 ++++++
1 file changed, 6 insertions(+)
diff --git a/pom.xml b/pom.xml
index 3871b65d..246dd4ab 100644
--- a/pom.xml
+++ b/pom.xml
@@ -105,6 +105,12 @@
springdoc-openapi-starter-webmvc-ui
2.8.17
+
+
+ org.apache.tomcat.embed
+ tomcat-embed-core
+ 10.1.55
+
org.springframework.boot
spring-boot-starter-validation
From 81579971d461db61635a705ac6f70807e9886700 Mon Sep 17 00:00:00 2001
From: Nico <5772511+Death111@users.noreply.github.com>
Date: Thu, 4 Jun 2026 18:51:57 +0200
Subject: [PATCH 3/3] overwrite tomcat to patched version (websocket as well)
---
pom.xml | 7 ++++++-
1 file changed, 6 insertions(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 246dd4ab..cb50b6a2 100644
--- a/pom.xml
+++ b/pom.xml
@@ -105,12 +105,17 @@
springdoc-openapi-starter-webmvc-ui
2.8.17
-
+
org.apache.tomcat.embed
tomcat-embed-core
10.1.55
+
+ org.apache.tomcat.embed
+ tomcat-embed-websocket
+ 10.1.55
+
org.springframework.boot
spring-boot-starter-validation