c20e2aee4afdeb20bc6fdeafaae42b67478306b4 | Author: Chris Lin <99268912+chrislin22@users.noreply.github.com>
| 2023-06-29 16:36:35-04:00
Update .github/workflows/snyk-pr-cleanup.yml
Co-authored-by: Madhavan <msmygit@users.noreply.github.com>
a3a8a4fbefc842f785bfc2942e54229ac942f834 | Author: Chris Lin <99268912+chrislin22@users.noreply.github.com>
| 2023-06-22 03:46:51-04:00
added Snyk monitor and snyk clean up after PR closed/merged (#1646)
* added snyk monitor and clean up
* used jdk 11 and add options
* Update snyk-cli-scan.yml
added explicit mvn package prepare for snyk
* Update snyk-cli-scan.yml
* use jdk 8
* added .snyk.ignore.example and .snyk
* triggered by branch 4.x
* address a few high CVEs identified by snyk scan
* ignore graal-sdk CVE for now until we can move off java8
* clean up snyk yaml files
* JAVA-3050: Upgrade Netty 4.1.94 to address recent CVEs
osgi-tests/BundleOptions.java
- since netty-4.1.78, netty-handler additionally depends on netty-transport-native-unix-common so we need to pull that in when configuring pax exam
---------
Co-authored-by: weideng1 <weideng1@users.noreply.github.com>
Co-authored-by: Henry Hughes <henry.hughes@datastax.com>