From 75ece5ae1f3f513735efc9fa83076a60ff96b98e Mon Sep 17 00:00:00 2001
From: PJ Fanning <pjfanning@users.noreply.github.com>
Date: Mon, 16 Oct 2023 09:39:01 +0100
Subject: [PATCH] upgrade netty used in cassandra connector due to CVE (#262)

---
 project/Dependencies.scala | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/project/Dependencies.scala b/project/Dependencies.scala
index 4c094cf8c..44d86fa36 100644
--- a/project/Dependencies.scala
+++ b/project/Dependencies.scala
@@ -28,6 +28,7 @@ object Dependencies {
   val AvroVersion = "1.11.3"
   val AwsSdk2Version = "2.17.113"
   val AwsSpiPekkoHttpVersion = "0.1.0"
+  val NettyVersion = "4.1.100.Final"
   // Sync with plugins.sbt
   val PekkoGrpcBinaryVersion = "current"
   val PekkoHttpVersion = "1.0.0"
@@ -118,6 +119,7 @@ object Dependencies {
         .exclude("com.github.spotbugs", "spotbugs-annotations")
         .exclude("org.apache.tinkerpop", "*") // https://github.com/akka/alpakka/issues/2200
         .exclude("com.esri.geometry", "esri-geometry-api"), // https://github.com/akka/alpakka/issues/2225
+      "io.netty" % "netty-handler" % NettyVersion,
       "org.apache.pekko" %% "pekko-discovery" % PekkoVersion % Provided))
 
   val Couchbase = Seq(