msb-public
/
spring-cloud-tencent
mirror of https://github.com/Tencent/spring-cloud-tencent
3
1
Code Issues Projects Releases Wiki Activity

Fix third-party lib CVEs & Upgrade core spring libs version . (2021.0) (#263)

Browse Source 
* Fix third-party lib CVEs & Upgrade core spring libs version .

* Update CHANGELOG.md

Co-authored-by: Haotian Zhang <928016560@qq.com>
pull/271/head
VOPEN.XYZ 2 years ago committed by GitHub
parent afa87770bd
commit 046ca66f62
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
5 changed files with 60 additions and 18 deletions
Show Stats Download Patch File Download Diff File

1
CHANGELOG.md
Unescape View File

@ -1,4 +1,5 @@
# Change Log # Change Log
--- ---
- [Upgrade: fix third-party lib CVEs & upgrade core spring libs version](https://github.com/Tencent/spring-cloud-tencent/pull/263)
- [feat:support reading configuration from application.yml or application.properties.](https://github.com/Tencent/spring-cloud-tencent/pull/262) - [feat:support reading configuration from application.yml or application.properties.](https://github.com/Tencent/spring-cloud-tencent/pull/262)

18
pom.xml
Unescape View File

@ -5,7 +5,7 @@
<parent> <parent>
<groupId>org.springframework.cloud</groupId> <groupId>org.springframework.cloud</groupId>
<artifactId>spring-cloud-build</artifactId> <artifactId>spring-cloud-build</artifactId>
<version>3.1.2</version> <version>3.1.3</version>
<relativePath/> <relativePath/>
</parent> </parent>
<modelVersion>4.0.0</modelVersion> <modelVersion>4.0.0</modelVersion>
@ -86,10 +86,13 @@
<properties> <properties>
<!-- Project revision --> <!-- Project revision -->
<revision>1.6.0-2021.0.2-SNAPSHOT</revision> <revision>1.6.0-2021.0.3-SNAPSHOT</revision>
<!-- Spring Cloud --> <!-- Spring Cloud -->
<spring.cloud.version>2021.0.2</spring.cloud.version> <spring.cloud.version>2021.0.3</spring.cloud.version>
<!-- Spring Framework -->
<spring.framework.version>5.3.21</spring.framework.version>
<!-- Maven Plugin Versions --> <!-- Maven Plugin Versions -->
<jacoco.version>0.8.3</jacoco.version> <jacoco.version>0.8.3</jacoco.version>
@ -123,6 +126,15 @@
<type>pom</type> <type>pom</type>
<scope>import</scope> <scope>import</scope>
</dependency> </dependency>
<!-- Spring Framework Dependencies -->
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-framework-bom</artifactId>
<version>${spring.framework.version}</version>
<type>pom</type>
<scope>import</scope>
</dependency>
</dependencies> </dependencies>
</dependencyManagement> </dependencyManagement>

11
spring-cloud-tencent-commons/pom.xml
Unescape View File

@ -14,9 +14,8 @@
<name>Spring Cloud Tencent Commons</name> <name>Spring Cloud Tencent Commons</name>
<properties> <properties>
<commons.collections.version>3.2.2</commons.collections.version> <commons.lang.version>2.6</commons.lang.version>
<commons.lang.version>2.5</commons.lang.version> <commons.io.version>2.11.0</commons.io.version>
<commons.io.version>2.7</commons.io.version>
</properties> </properties>
<dependencies> <dependencies>
@ -47,12 +46,6 @@
<artifactId>spring-cloud-starter</artifactId> <artifactId>spring-cloud-starter</artifactId>
</dependency> </dependency>
<dependency>
<groupId>commons-collections</groupId>
<artifactId>commons-collections</artifactId>
<version>${commons.collections.version}</version>
</dependency>
<dependency> <dependency>
<groupId>commons-lang</groupId> <groupId>commons-lang</groupId>
<artifactId>commons-lang</artifactId> <artifactId>commons-lang</artifactId>

44
spring-cloud-tencent-dependencies/pom.xml
Unescape View File

@ -5,7 +5,7 @@
<parent> <parent>
<groupId>org.springframework.cloud</groupId> <groupId>org.springframework.cloud</groupId>
<artifactId>spring-cloud-dependencies-parent</artifactId> <artifactId>spring-cloud-dependencies-parent</artifactId>
<version>3.1.2</version> <version>3.1.3</version>
<relativePath/> <relativePath/>
</parent> </parent>
<modelVersion>4.0.0</modelVersion> <modelVersion>4.0.0</modelVersion>
@ -70,12 +70,16 @@
</developers> </developers>
<properties> <properties>
<revision>1.6.0-2021.0.2-SNAPSHOT</revision> <revision>1.6.0-2021.0.3-SNAPSHOT</revision>
<!-- Dependencies -->
<polaris.version>1.6.1</polaris.version> <polaris.version>1.6.1</polaris.version>
<guava.version>31.1-jre</guava.version> <guava.version>31.0.1-jre</guava.version>
<logback.version>1.2.7</logback.version> <logback.version>1.2.11</logback.version>
<mocktio.version>4.5.1</mocktio.version> <mocktio.version>4.5.1</mocktio.version>
<byte-buddy.version>1.12.10</byte-buddy.version> <byte-buddy.version>1.12.10</byte-buddy.version>
<protobuf-java.version>3.16.1</protobuf-java.version>
<bcprov-jdk15on.version>1.69</bcprov-jdk15on.version>
<!-- Maven Plugin Versions --> <!-- Maven Plugin Versions -->
<maven-source-plugin.version>3.2.0</maven-source-plugin.version> <maven-source-plugin.version>3.2.0</maven-source-plugin.version>
@ -152,6 +156,26 @@
<groupId>com.google.guava</groupId> <groupId>com.google.guava</groupId>
<artifactId>guava</artifactId> <artifactId>guava</artifactId>
<version>${guava.version}</version> <version>${guava.version}</version>
<exclusions>
<exclusion>
<artifactId>jsr305</artifactId>
<groupId>com.google.code.findbugs</groupId>
</exclusion>
<exclusion>
<artifactId>animal-sniffer-annotations</artifactId>
<groupId>org.codehaus.mojo</groupId>
</exclusion>
<exclusion>
<artifactId>error_prone_annotations</artifactId>
<groupId>com.google.errorprone</groupId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>ch.qos.logback</groupId>
<artifactId>logback-core</artifactId>
<version>${logback.version}</version>
</dependency> </dependency>
<dependency> <dependency>
@ -160,6 +184,18 @@
<version>${logback.version}</version> <version>${logback.version}</version>
</dependency> </dependency>
<dependency>
<groupId>com.google.protobuf</groupId>
<artifactId>protobuf-java</artifactId>
<version>${protobuf-java.version}</version>
</dependency>
<dependency>
<groupId>org.bouncycastle</groupId>
<artifactId>bcprov-jdk15on</artifactId>
<version>${bcprov-jdk15on.version}</version>
</dependency>
<dependency> <dependency>
<groupId>org.mockito</groupId> <groupId>org.mockito</groupId>
<artifactId>mockito-inline</artifactId> <artifactId>mockito-inline</artifactId>

4
spring-cloud-tencent-polaris-loadbalancer/src/main/java/com/tencent/cloud/polaris/loadbalancer/LoadBalancerUtils.java
Unescape View File

@ -27,10 +27,10 @@ import com.tencent.polaris.api.pojo.DefaultServiceInstances;
import com.tencent.polaris.api.pojo.Instance; import com.tencent.polaris.api.pojo.Instance;
import com.tencent.polaris.api.pojo.ServiceInstances; import com.tencent.polaris.api.pojo.ServiceInstances;
import com.tencent.polaris.api.pojo.ServiceKey; import com.tencent.polaris.api.pojo.ServiceKey;
import org.apache.commons.collections.CollectionUtils;
import reactor.core.publisher.Flux; import reactor.core.publisher.Flux;
import org.springframework.cloud.client.ServiceInstance; import org.springframework.cloud.client.ServiceInstance;
import org.springframework.util.CollectionUtils;
/** /**
* load balancer utils. * load balancer utils.
@ -54,7 +54,7 @@ public class LoadBalancerUtils {
}).collect(Collectors.toList()); }).collect(Collectors.toList());
String serviceName = null; String serviceName = null;
if (CollectionUtils.isNotEmpty(instances)) { if (!CollectionUtils.isEmpty(instances)) {
serviceName = instances.get(0).getService(); serviceName = instances.get(0).getService();
} }

Write Preview
Loading…
Cancel
Save