fix: snyk ionetty vulberability warnings (#39)

Ignore then in .snyk file since there are no patches for them
hypertrace · Nov 23, 2020 · 69b6787 · 69b6787
1 parent 821f3e7
commit 69b6787
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 2 deletions.
diff --git a/.snyk b/.snyk
@@ -10,4 +10,8 @@ ignore:
     - '*':
         reason: no available replacement
         expires: 2021-01-31T00:00:00.000Z
+  SNYK-JAVA-IONETTY-1042268:
+    - '*':
+        reason: No replacement available
+        expires: 2021-01-31T00:00:00.000Z
 patch: {}
diff --git a/query-service/build.gradle.kts b/query-service/build.gradle.kts
@@ -12,10 +12,10 @@ dependencies {
   implementation("io.grpc:grpc-netty:1.33.0")
   implementation("org.slf4j:slf4j-api:1.7.30")
 
-  runtimeOnly("io.netty:netty-codec-http2:4.1.53.Final") {
+  runtimeOnly("io.netty:netty-codec-http2:4.1.54.Final") {
     because("https://snyk.io/vuln/SNYK-JAVA-IONETTY-1020439")
   }
-  runtimeOnly("io.netty:netty-handler-proxy:4.1.53.Final") {
+  runtimeOnly("io.netty:netty-handler-proxy:4.1.54.Final") {
     because("https://snyk.io/vuln/SNYK-JAVA-IONETTY-1020439s")
   }
   runtimeOnly("org.apache.logging.log4j:log4j-slf4j-impl:2.13.3")