From ff5972ab55a5f3344e7a85f9a9a9a45de17a458a Mon Sep 17 00:00:00 2001
From: mohamedlajmileanix <amin.lajmi@leanix.net>
Date: Wed, 10 Jul 2024 10:35:54 +0200
Subject: [PATCH] CID-2786: fix Snyk vulnerabilities

---
 build.gradle.kts                                                | 2 +-
 .../net/leanix/vsm/sbomBooster/service/VsmDiscoveryService.kt   | 2 +-
 .../leanix/vsm/sbomBooster/service/VsmDiscoveryServiceTests.kt  | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build.gradle.kts b/build.gradle.kts
index 1927e99..ca42b2a 100644
--- a/build.gradle.kts
+++ b/build.gradle.kts
@@ -26,7 +26,7 @@ dependencies {
 	implementation("org.jetbrains.kotlin:kotlin-stdlib-jdk8")
 	implementation("org.reactivestreams:reactive-streams:1.0.4")
 	implementation("com.expediagroup:graphql-kotlin-spring-client:7.0.2")
-	implementation("org.cyclonedx:cyclonedx-core-java:8.0.3")
+	implementation("org.cyclonedx:cyclonedx-core-java:9.0.4")
 	// Explicitly fetching transitive dependencies to avoid known vulnerabilities
 	implementation("ch.qos.logback:logback-core:1.4.14")
 	implementation("ch.qos.logback:logback-classic:1.4.14")
diff --git a/src/main/kotlin/net/leanix/vsm/sbomBooster/service/VsmDiscoveryService.kt b/src/main/kotlin/net/leanix/vsm/sbomBooster/service/VsmDiscoveryService.kt
index 8552f2c..dd19b8d 100644
--- a/src/main/kotlin/net/leanix/vsm/sbomBooster/service/VsmDiscoveryService.kt
+++ b/src/main/kotlin/net/leanix/vsm/sbomBooster/service/VsmDiscoveryService.kt
@@ -3,7 +3,7 @@ package net.leanix.vsm.sbomBooster.service
 import net.leanix.vsm.sbomBooster.VsmSbomBoosterApplication
 import net.leanix.vsm.sbomBooster.configuration.PropertiesConfiguration
 import net.leanix.vsm.sbomBooster.domain.VsmDiscoveryItem
-import org.cyclonedx.BomParserFactory
+import org.cyclonedx.parsers.BomParserFactory
 import org.slf4j.Logger
 import org.slf4j.LoggerFactory
 import org.springframework.core.io.FileSystemResource
diff --git a/src/test/kotlin/net/leanix/vsm/sbomBooster/service/VsmDiscoveryServiceTests.kt b/src/test/kotlin/net/leanix/vsm/sbomBooster/service/VsmDiscoveryServiceTests.kt
index 3b607c6..5208fd6 100644
--- a/src/test/kotlin/net/leanix/vsm/sbomBooster/service/VsmDiscoveryServiceTests.kt
+++ b/src/test/kotlin/net/leanix/vsm/sbomBooster/service/VsmDiscoveryServiceTests.kt
@@ -6,9 +6,9 @@ import io.mockk.mockkStatic
 import io.mockk.verify
 import net.leanix.vsm.sbomBooster.configuration.PropertiesConfiguration
 import net.leanix.vsm.sbomBooster.domain.VsmDiscoveryItem
-import org.cyclonedx.BomParserFactory
 import org.cyclonedx.model.Bom
 import org.cyclonedx.model.Component
+import org.cyclonedx.parsers.BomParserFactory
 import org.cyclonedx.parsers.Parser
 import org.junit.jupiter.api.BeforeEach
 import org.junit.jupiter.api.Test