From b463fc75e2421a5a19b2b630fe6bfbf4c164193d Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 15 Jun 2021 03:30:57 +0000
Subject: [PATCH] fix: digidoc4j/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-1052448
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-1296075
---
 digidoc4j/pom.xml | 30 ++++++++++--------------------
 1 file changed, 10 insertions(+), 20 deletions(-)

diff --git a/digidoc4j/pom.xml b/digidoc4j/pom.xml
index 7e692c3dd..8a5b147f9 100644
--- a/digidoc4j/pom.xml
+++ b/digidoc4j/pom.xml
@@ -43,7 +43,7 @@
         <dependency>
             <artifactId>ddoc4j</artifactId>
             <groupId>org.digidoc4j</groupId>
-            <version>4.1.0-RC.1</version>
+            <version>4.2.0</version>
         </dependency>
 
         <dependency>
@@ -515,21 +515,16 @@
                         <configuration>
                             <target>
                                 <jar jarfile="${dss.util.build}/temp.jar">
-                                    <zipgroupfileset dir="${dss.util.lib}"
-                                                     includes="**/dss*.jar **/validation-policy*.jar"/>
+                                    <zipgroupfileset dir="${dss.util.lib}" includes="**/dss*.jar **/validation-policy*.jar"/>
                                     <zipgroupfileset dir="${dss.util.lib}" includes="**/*.jar" excludes="bcprov-*.jar"/>
-                                    <zipgroupfileset dir="${project.build.directory}" includes="**/digidoc4j-*.jar"
-                                                     excludes="*-javadoc.jar *-sources.jar"/>
-                                    <zipgroupfileset dir="${project.build.directory}"
-                                                     includes="**/logback-*.jar"/>
+                                    <zipgroupfileset dir="${project.build.directory}" includes="**/digidoc4j-*.jar" excludes="*-javadoc.jar *-sources.jar"/>
+                                    <zipgroupfileset dir="${project.build.directory}" includes="**/logback-*.jar"/>
                                 </jar>
                                 <jar destfile="${dss.util.build}/digidoc4j-util.jar">
-                                    <zipfileset src="${dss.util.build}/temp.jar"
-                                                excludes="META-INF/*.SF META-INF/*.RSA META-INF/*.DSA"/>
+                                    <zipfileset src="${dss.util.build}/temp.jar" excludes="META-INF/*.SF META-INF/*.RSA META-INF/*.DSA"/>
                                     <manifest>
                                         <attribute name="Built-By" value="${user.name}"/>
-                                        <attribute name="Implementation-Vendor"
-                                                   value="Republic of Estonia Information System Authority"/>
+                                        <attribute name="Implementation-Vendor" value="Republic of Estonia Information System Authority"/>
                                         <attribute name="Implementation-Title" value="Java BDoc/DigiDoc utility"/>
                                         <attribute name="Implementation-Version" value="${project.version}"/>
                                         <attribute name="Main-Class" value="org.digidoc4j.main.DigiDoc4J"/>
@@ -544,9 +539,7 @@
                                 <copy todir="${dss.util.build}/">
                                     <fileset dir="${project.basedir}/src/main/etc" includes="*.xml"/>
                                 </copy>
-                                <zip
-                                    destfile="${project.build.directory}/${project.artifactId}-${project.version}-util.zip"
-                                    basedir="${dss.util.build}"/>
+                                <zip destfile="${project.build.directory}/${project.artifactId}-${project.version}-util.zip" basedir="${dss.util.build}"/>
                                 <copy tofile="${project.build.directory}/${project.artifactId}-${project.version}.pom">
                                     <fileset dir="${project.basedir}" includes="**/pom.xml"/>
                                 </copy>
@@ -561,13 +554,10 @@
                         <phase>install</phase>
                         <configuration>
                             <target>
-                                <jar
-                                    jarfile="${project.build.directory}/${project.artifactId}-${project.version}-bundle.jar">
-                                    <fileset dir="${project.build.directory}" includes="**/digidoc4j-*.jar"
-                                             excludes="*-library.jar"/>
+                                <jar jarfile="${project.build.directory}/${project.artifactId}-${project.version}-bundle.jar">
+                                    <fileset dir="${project.build.directory}" includes="**/digidoc4j-*.jar" excludes="*-library.jar"/>
                                     <fileset dir="${project.build.directory}" includes="**/*.pom"/>
-                                    <fileset dir="${project.build.directory}" includes="**/*.asc"
-                                             excludes="*-library.*.asc"/>
+                                    <fileset dir="${project.build.directory}" includes="**/*.asc" excludes="*-library.*.asc"/>
                                 </jar>
                             </target>
                         </configuration>