From 8d3c0ec9a0e126e0e430de7c4fbf817199632b0d Mon Sep 17 00:00:00 2001
From: Andrew DeMaria <lostonamountain@gmail.com>
Date: Sun, 8 Jul 2018 00:20:07 -0400
Subject: [PATCH] Updates

- Update Spring boot Version
- Update dependency check version
- Exclude irrelevant nodejs cve

Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
---
 airsonic-main/cve-suppressed.xml | 5 +++++
 pom.xml                          | 4 ++--
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/airsonic-main/cve-suppressed.xml b/airsonic-main/cve-suppressed.xml
index e3bb2161..1ff88faf 100644
--- a/airsonic-main/cve-suppressed.xml
+++ b/airsonic-main/cve-suppressed.xml
@@ -124,4 +124,9 @@
         <gav regex="true">^org\.postgresql:postgresql:.*$</gav>
         <cve>CVE-2018-1115</cve>
     </suppress>
+    <suppress>
+        <notes>This is for nodejs</notes>
+        <gav regex="true">^org\.mariadb\.jdbc:mariadb-java-client:.*$</gav>
+        <cve>CVE-2017-16046</cve>
+    </suppress>
 </suppressions>
diff --git a/pom.xml b/pom.xml
index b335a731..b6e4477b 100644
--- a/pom.xml
+++ b/pom.xml
@@ -86,7 +86,7 @@
                 <!-- Import dependency management from Spring Boot -->
                 <groupId>org.springframework.boot</groupId>
                 <artifactId>spring-boot-dependencies</artifactId>
-                <version>1.5.12.RELEASE</version>
+                <version>1.5.14.RELEASE</version>
                 <type>pom</type>
                 <scope>import</scope>
             </dependency>
@@ -205,7 +205,7 @@
                 <plugin>
                     <groupId>org.owasp</groupId>
                     <artifactId>dependency-check-maven</artifactId>
-                    <version>3.1.2</version>
+                    <version>3.2.1</version>
                     <inherited>true</inherited>
                     <configuration>
                         <failBuildOnAnyVulnerability>true</failBuildOnAnyVulnerability>