FDP-2665 ~ Fixes CVEs by adding exclusions

Signed-off-by: Sander van der Heijden <[email protected]>
OSGP · Oct 3, 2024 · e9d2116 · e9d2116
1 parent 2174b84
commit e9d2116
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/oauth-token-client/build.gradle.kts b/oauth-token-client/build.gradle.kts
@@ -19,7 +19,12 @@ testing {
             dependencies {
                 implementation(project())
                 implementation("org.springframework.boot:spring-boot-starter-test")
-                implementation(testLibs.mockServer)
+                implementation(testLibs.mockServer) {
+                    // CVE fixes
+                    exclude(group = "org.bouncycastle", module = "bcpkix-jdk18on")
+                    exclude(group = "org.bouncycastle", module = "bcprov-jdk18on")
+                    exclude(group = "org.bouncycastle", module = "bcutil-jdk18on")
+                }
             }
         }
     }