Merge pull request #113 from cyberark/update-dependencies

gl-johnson · web-flow · commit 8214ec53ca78 · 2023-02-07T13:13:16.000-07:00
Bump Apache cxf to 4.0.0, upgrade dockerfile base images
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -6,6 +6,10 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 
 ## [Unreleased]
 
+### Security
+- Update Dockerfile base images, bump Apache cxf to 3.5.5
+  [cyberark/conjur-api-java#113](https://github.com/cyberark/conjur-api-java/issues/113)
+
 ## [3.0.3] - 2022-05-31
 
 ### Security
diff --git a/Dockerfile.nginx b/Dockerfile.nginx
@@ -1,4 +1,4 @@
-FROM nginx:1.21.6
+FROM nginx:1.23.3
 
 MAINTAINER Conjur Inc
 
diff --git a/Dockerfile.test b/Dockerfile.test
@@ -1,4 +1,4 @@
-FROM openjdk:17-jdk-bullseye
+FROM openjdk:21-slim
 
 MAINTAINER Conjur Inc
 
diff --git a/pom.xml b/pom.xml
@@ -160,7 +160,7 @@
       <dependency>
         <groupId>org.apache.cxf</groupId>
         <artifactId>cxf-rt-rs-client</artifactId>
-        <version>3.5.1</version>
+        <version>3.5.5</version>
       </dependency>
 
       <!-- JSON support -->
