From bce847418942f27f4c6e54c0eccc0f15ae8aa77e Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 11 Jan 2019 15:56:54 +0000 Subject: [PATCH 1/4] fix: pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-COMMONSFILEUPLOAD-30082 - https://snyk.io/vuln/SNYK-JAVA-COMMONSFILEUPLOAD-30401 - https://snyk.io/vuln/SNYK-JAVA-COMMONSFILEUPLOAD-31540 - https://snyk.io/vuln/SNYK-JAVA-OGNL-30474 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30058 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30060 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30207 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30770 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30771 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30772 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30773 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30774 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30775 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30776 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30777 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-30778 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-31495 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-31500 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-31501 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-31502 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-31503 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTS-32477 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTSXWORK-30797 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTSXWORK-30798 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTSXWORK-30799 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTSXWORK-30800 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTSXWORK-30801 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTSXWORK-30802 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTSXWORK-30803 - https://snyk.io/vuln/SNYK-JAVA-ORGAPACHESTRUTSXWORK-30804 - https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-30163 - https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-30164 - https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-30165 - https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-31325 - https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-31331 --- pom.xml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pom.xml b/pom.xml index fa14b3c1cb..5992235a25 100644 --- a/pom.xml +++ b/pom.xml @@ -10,10 +10,10 @@ https://github.com/snyk/java-goof - 3.2.6.RELEASE + 3.2.15.RELEASE 4.3.7.Final 5.3.8 - 2.3.20 + 2.5.12 UTF-8 From ed1851acd598fcfe5bd44ea40e458e73b7b7ee83 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 8 Apr 2019 15:25:28 +0000 Subject: [PATCH 2/4] fix: todolist-core/pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-COMMONSCOLLECTIONS-30078 --- todolist-core/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/todolist-core/pom.xml b/todolist-core/pom.xml index 705976a3e1..e49bf3c5cf 100644 --- a/todolist-core/pom.xml +++ b/todolist-core/pom.xml @@ -87,7 +87,7 @@ commons-collections commons-collections - 3.2.1 + 3.2.2 From 3aefdfd1c89295110d92cf2cedb9c43475d3236d Mon Sep 17 00:00:00 2001 From: Omri Negri <45172620+Omrisnyk@users.noreply.github.com> Date: Thu, 14 Jan 2021 11:54:18 +0000 Subject: [PATCH 3/4] Add .circleci/config.yml --- .circleci/config.yml | 42 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 42 insertions(+) create mode 100644 .circleci/config.yml diff --git a/.circleci/config.yml b/.circleci/config.yml new file mode 100644 index 0000000000..48de984282 --- /dev/null +++ b/.circleci/config.yml @@ -0,0 +1,42 @@ +# Java Gradle CircleCI 2.0 configuration file +# +# Check https://circleci.com/docs/2.0/language-java/ for more details +# +version: 2 +jobs: + build: + docker: + # specify the version you desire here + - image: circleci/openjdk:8-jdk + + # Specify service dependencies here if necessary + # CircleCI maintains a library of pre-built images + # documented at https://circleci.com/docs/2.0/circleci-images/ + # - image: circleci/postgres:9.4 + + working_directory: ~/repo + + environment: + # Customize the JVM maximum heap limit + JVM_OPTS: -Xmx3200m + TERM: dumb + + steps: + - checkout + + # Download and cache dependencies + - restore_cache: + keys: + - v1-dependencies-{{ checksum "build.gradle" }} + # fallback to using the latest cache if no exact match is found + - v1-dependencies- + + - run: gradle dependencies + + - save_cache: + paths: + - ~/.gradle + key: v1-dependencies-{{ checksum "build.gradle" }} + + # run tests! + - run: gradle test From 904c2e059ef565ddffcefd30139dc1d19e231afb Mon Sep 17 00:00:00 2001 From: Omri Negri <45172620+Omrisnyk@users.noreply.github.com> Date: Thu, 7 Mar 2024 13:15:39 +0000 Subject: [PATCH 4/4] Add .circleci/config.yml --- .circleci/config.yml | 63 ++++++++++++++++++-------------------------- 1 file changed, 26 insertions(+), 37 deletions(-) diff --git a/.circleci/config.yml b/.circleci/config.yml index 48de984282..62291703e2 100644 --- a/.circleci/config.yml +++ b/.circleci/config.yml @@ -1,42 +1,31 @@ -# Java Gradle CircleCI 2.0 configuration file -# -# Check https://circleci.com/docs/2.0/language-java/ for more details -# -version: 2 +# Use the latest 2.1 version of CircleCI pipeline process engine. +# See: https://circleci.com/docs/configuration-reference +version: 2.1 + +# Define a job to be invoked later in a workflow. +# See: https://circleci.com/docs/jobs-steps/#jobs-overview & https://circleci.com/docs/configuration-reference/#jobs jobs: - build: + say-hello: + # Specify the execution environment. You can specify an image from Docker Hub or use one of our convenience images from CircleCI's Developer Hub. + # See: https://circleci.com/docs/executor-intro/ & https://circleci.com/docs/configuration-reference/#executor-job docker: - # specify the version you desire here - - image: circleci/openjdk:8-jdk - - # Specify service dependencies here if necessary - # CircleCI maintains a library of pre-built images - # documented at https://circleci.com/docs/2.0/circleci-images/ - # - image: circleci/postgres:9.4 - - working_directory: ~/repo - - environment: - # Customize the JVM maximum heap limit - JVM_OPTS: -Xmx3200m - TERM: dumb + # Specify the version you desire here + # See: https://circleci.com/developer/images/image/cimg/base + - image: cimg/base:current + # Add steps to the job + # See: https://circleci.com/docs/jobs-steps/#steps-overview & https://circleci.com/docs/configuration-reference/#steps steps: + # Checkout the code as the first step. - checkout - - # Download and cache dependencies - - restore_cache: - keys: - - v1-dependencies-{{ checksum "build.gradle" }} - # fallback to using the latest cache if no exact match is found - - v1-dependencies- - - - run: gradle dependencies - - - save_cache: - paths: - - ~/.gradle - key: v1-dependencies-{{ checksum "build.gradle" }} - - # run tests! - - run: gradle test + - run: + name: "Say hello" + command: "echo Hello, World!" + +# Orchestrate jobs using workflows +# See: https://circleci.com/docs/workflows/ & https://circleci.com/docs/configuration-reference/#workflows +workflows: + say-hello-workflow: # This is the name of the workflow, feel free to change it to better match your workflow. + # Inside the workflow, you define the jobs you want to run. + jobs: + - say-hello \ No newline at end of file