From c3a38299be4fd7e1fb5f7a34da276425ccff9705 Mon Sep 17 00:00:00 2001 From: Scott Moser Date: Wed, 24 Apr 2024 09:29:32 -0400 Subject: [PATCH] wavefront-proxy: bump netty-bom and netty-codec-http With the 4.1.108.Final version of netty-codec-http, attempt to run wavefront-proxy would fail with a stacktrace like: Bumping those makes the stacktrace go away. Exception in thread "main" java.lang.NoClassDefFoundError: io/netty/handler/codec/http/cors/CorsConfig at java.base/java.lang.Class.getDeclaredMethods0(Native Method) at java.base/java.lang.Class.privateGetDeclaredMethods(Class.java:3166) at java.base/java.lang.Class.getDeclaredMethod(Class.java:2473) at org.springframework.boot.loader.MainMethodRunner.run(MainMethodRunner.java:47) at org.springframework.boot.loader.Launcher.launch(Launcher.java:108) at org.springframework.boot.loader.Launcher.launch(Launcher.java:58) at org.springframework.boot.loader.JarLauncher.main(JarLauncher.java:65) --- wavefront-proxy.yaml | 2 +- wavefront-proxy/proxy/pombump-deps.yaml | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/wavefront-proxy.yaml b/wavefront-proxy.yaml index aaec78f3f28..3f03c00a876 100644 --- a/wavefront-proxy.yaml +++ b/wavefront-proxy.yaml @@ -1,7 +1,7 @@ package: name: wavefront-proxy version: "13.4" # When version is bumped, check if patches are still needed to address CVE-2023-1428 - epoch: 4 + epoch: 5 description: Wavefront Proxy Project copyright: - license: Apache-2.0 diff --git a/wavefront-proxy/proxy/pombump-deps.yaml b/wavefront-proxy/proxy/pombump-deps.yaml index c8c73cfd03b..a3d5de67b3e 100644 --- a/wavefront-proxy/proxy/pombump-deps.yaml +++ b/wavefront-proxy/proxy/pombump-deps.yaml @@ -14,12 +14,12 @@ patches: # Fixes GHSA-5jpm-x58v-624v - groupId: io.netty artifactId: netty-bom - version: 4.1.108.Final + version: 4.1.109.Final scope: import type: jar - groupId: io.netty artifactId: netty-codec-http - version: 4.1.108.Final + version: 4.1.109.Final scope: import type: jar - groupId: com.squareup.okio