diff --git a/owasp-false-positive-warnings.xml b/owasp-false-positive-warnings.xml
index dd0a4a408e0f284012c40e17f04c025ecf9b0aa5..f7ab0125dbe96683a0cbcaa07faf9ab9ced983c6 100644
--- a/owasp-false-positive-warnings.xml
+++ b/owasp-false-positive-warnings.xml
@@ -28,7 +28,6 @@
The data serialized by the application are from authenticated users and trusted
NOTE: the vendor's position is that untrusted data is not an intended use case. The product's behavior will not be changed because some users rely on deserialization of trusted data.
]]></notes>
- <sha1>368e76f732a3c331b970f69cafec1525d27b34d3</sha1>
<cve>CVE-2016-1000027</cve>
</suppress>
<suppress>
diff --git a/pom.xml b/pom.xml
index 7eacbe9a0bc65d406bb356b141c713d3c3ed5e2f..3b25a4f6835b189094a4cc9ac4ea27eaa7e1b7b3 100644
--- a/pom.xml
+++ b/pom.xml
@@ -57,7 +57,7 @@ See the Licence for the specific language governing permissions and limitations
<bdmsl-api.version>4.3</bdmsl-api.version>
<!-- plugin versions -->
<maven-enforcer-plugin.version>3.4.1</maven-enforcer-plugin.version>
- <plugin.dependency-check-maven.version>9.0.7</plugin.dependency-check-maven.version>
+ <plugin.dependency-check-maven.version>9.0.9</plugin.dependency-check-maven.version>
<plugin.jacoco-maven-plugin.version>0.8.11</plugin.jacoco-maven-plugin.version>
<plugin.license-maven-plugin.version>2.3.0</plugin.license-maven-plugin.version>
<plugin.maven-antrun-plugin.version>3.1.0</plugin.maven-antrun-plugin.version>
@@ -72,7 +72,7 @@ See the Licence for the specific language governing permissions and limitations
<plugin.maven-surefire-plugin.version>3.2.2</plugin.maven-surefire-plugin.version>
<plugin.maven-war-plugin.version>3.4.0</plugin.maven-war-plugin.version>
- <aspectj.version>1.9.21</aspectj.version>
+ <aspectj.version>1.9.21.1</aspectj.version>
<commons-beanutils.version>1.9.4</commons-beanutils.version>
<commons-collections.version>3.2.2</commons-collections.version>
<commons-io.version>2.15.1</commons-io.version>
@@ -90,7 +90,7 @@ See the Licence for the specific language governing permissions and limitations
<hibernate.validator.version>7.0.5.Final</hibernate.validator.version>
<hibernate.version>5.6.15.Final</hibernate.version>
<httpclient.version>4.5.14</httpclient.version>
- <jackson.version>2.16.0</jackson.version>
+ <jackson.version>2.16.1</jackson.version>
<javaee-api.version>7.0</javaee-api.version>
<javax.annotation.version>1.3.2</javax.annotation.version>
<javax.mail.version>1.6.2</javax.mail.version>
@@ -99,22 +99,22 @@ See the Licence for the specific language governing permissions and limitations
<jakarta.xml.bind-api.version>2.3.3</jakarta.xml.bind-api.version>
<jstl.version>1.2</jstl.version>
<junit.version>4.13.2</junit.version>
- <junit-jupiter.version>5.10.1</junit-jupiter.version>
+ <junit-jupiter.version>5.10.2</junit-jupiter.version>
<junit-platform-surefire-provider.version>1.3.2</junit-platform-surefire-provider.version>
<junitparams.version>1.1.1</junitparams.version>
<!-- Use logback 1.2.x because is the one used by springboot 5.7. Changing to 1.3+ will break springboot logging. -->
<slf4j.version>1.7.36</slf4j.version>
<logback.version>1.2.13</logback.version>
- <mysql.jdbc.version>8.2.0</mysql.jdbc.version>
+ <mysql.jdbc.version>8.3.0</mysql.jdbc.version>
<metro.version>2.2.1-1</metro.version>
<mockito.version>4.11.0</mockito.version>
<jakarta.servlet-api.version>4.0.2</jakarta.servlet-api.version>
<spring-modules-jakarta-commons.version>0.8</spring-modules-jakarta-commons.version>
<spring-boot.version>2.7.18</spring-boot.version>
- <spring-boot.tomcat.version>9.0.84</spring-boot.tomcat.version>
- <spring.security.version>5.8.8</spring.security.version>
- <spring.version>5.3.31</spring.version>
+ <spring-boot.tomcat.version>9.0.86</spring-boot.tomcat.version>
+ <spring.security.version>5.8.10</spring.security.version>
+ <spring.version>5.3.32</spring.version>
<xmlunit.version>2.9.1</xmlunit.version>
<!-- plugins -->