Skip to content

Commit

Permalink
Merge pull request #1284 from Netflix/feature/dgs-platform-graphql-19
Browse files Browse the repository at this point in the history 
DGS BOM is expresses stronger version constraints for GraphQL Java
  • Loading branch information
@berngp
berngp committed Oct 19, 2022
2 parents 3e0b0a8 + 4ba2e64 commit 4df3b5a
Showing 1 changed file with 17 additions and 5 deletions.
22 changes: 17 additions & 5 deletions graphql-dgs-platform/build.gradle.kts
View file
Expand Up @@ -48,17 +48,29 @@ dependencies {
constraints {
// GraphQL Platform
api("com.graphql-java:graphql-java") {
version { require("19.2") }
version {
strictly("[19.2, 20[")
prefer("19.2")
reject("18.2")
}

}
api("com.graphql-java:graphql-java-extended-scalars") {
version { require("19.0") }
version {
strictly("[19.0, 20[")
prefer("19.0")
reject("18.2")
}
}
api("com.graphql-java:graphql-java-extended-validation") {
// The version below will work with Jakarta EE 8 and use Hibernate Validator 6.2.
version { require("19.1-hibernate-validator-6.2.0.Final") }
version { strictly("19.1-hibernate-validator-6.2.0.Final") }
}
api("com.apollographql.federation:federation-graphql-java-support") {
version { require("2.1.0") }
version {
strictly("[2.0, 2.2[")
prefer("2.1.0")
}
}
// ---
api("com.jayway.jsonpath:json-path") {
Expand All @@ -74,7 +86,7 @@ dependencies {
api("org.apache.logging.log4j:log4j-to-slf4j:2.19.0") {
because("Refer to CVE-2021-44228; https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228")
}
api("org.apache.logging.log4j:log4j-api:2.18.0") {
api("org.apache.logging.log4j:log4j-api:2.19.0") {
because("Refer to CVE-2021-44228; https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228")
}
}
Expand Down

0 comments on commit 4df3b5a

Please sign in to comment.