From abe264449c2175116451df730c0372c53f2d4484 Mon Sep 17 00:00:00 2001
From: Giampiero Ferrara <giampiero.ferrara@emeal.nttdata.com>
Date: Mon, 9 Dec 2024 15:00:44 +0100
Subject: [PATCH 1/2] [SELC-6155] bugfix: Fixed log injection into getFiles

---
 libs/onboarding-sdk-azure-storage/pom.xml                    | 2 +-
 .../pagopa/selfcare/azurestorage/AzureBlobClientDefault.java | 5 +++--
 libs/onboarding-sdk-common/pom.xml                           | 2 +-
 libs/onboarding-sdk-crypto/pom.xml                           | 2 +-
 libs/onboarding-sdk-pom/pom.xml                              | 2 +-
 libs/onboarding-sdk-product/pom.xml                          | 4 ++--
 6 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/libs/onboarding-sdk-azure-storage/pom.xml b/libs/onboarding-sdk-azure-storage/pom.xml
index 83c28b50a..3f411ab4f 100644
--- a/libs/onboarding-sdk-azure-storage/pom.xml
+++ b/libs/onboarding-sdk-azure-storage/pom.xml
@@ -6,7 +6,7 @@
   <parent>
     <groupId>it.pagopa.selfcare</groupId>
     <artifactId>onboarding-sdk-pom</artifactId>
-    <version>0.6.0</version>
+    <version>0.6.1</version>
     <relativePath>../onboarding-sdk-pom</relativePath>
   </parent>
 
diff --git a/libs/onboarding-sdk-azure-storage/src/main/java/it/pagopa/selfcare/azurestorage/AzureBlobClientDefault.java b/libs/onboarding-sdk-azure-storage/src/main/java/it/pagopa/selfcare/azurestorage/AzureBlobClientDefault.java
index 7db754e5d..2bb33696e 100644
--- a/libs/onboarding-sdk-azure-storage/src/main/java/it/pagopa/selfcare/azurestorage/AzureBlobClientDefault.java
+++ b/libs/onboarding-sdk-azure-storage/src/main/java/it/pagopa/selfcare/azurestorage/AzureBlobClientDefault.java
@@ -158,13 +158,14 @@ public BlobProperties getProperties(String filePath) {
     @Override
     public List<String> getFiles(String path) {
         log.debug("START - getFiles by given path: {}", path);
+        String sanitizePath = StringUtils.replace(path, "\n", StringUtils.EMPTY).replace("\r", StringUtils.EMPTY);
         List<String> listOfResource = new ArrayList<>();
         final BlobContainerClient blobContainer = blobClient.getBlobContainerClient(containerName);
 
-        if (StringUtils.isNotEmpty(path)) {
+        if (StringUtils.isNotEmpty(sanitizePath)) {
 
             ListBlobsOptions options = new ListBlobsOptions()
-                .setPrefix(path)
+                .setPrefix(sanitizePath)
                 .setDetails(new BlobListDetails()
                     .setRetrieveDeletedBlobs(true)
                     .setRetrieveSnapshots(true));
diff --git a/libs/onboarding-sdk-common/pom.xml b/libs/onboarding-sdk-common/pom.xml
index b5cb5b555..87f5bee73 100644
--- a/libs/onboarding-sdk-common/pom.xml
+++ b/libs/onboarding-sdk-common/pom.xml
@@ -4,7 +4,7 @@
     <parent>
         <groupId>it.pagopa.selfcare</groupId>
         <artifactId>onboarding-sdk-pom</artifactId>
-        <version>0.6.0</version>
+        <version>0.6.1</version>
         <relativePath>../onboarding-sdk-pom</relativePath>
     </parent>
     <artifactId>onboarding-sdk-common</artifactId>
diff --git a/libs/onboarding-sdk-crypto/pom.xml b/libs/onboarding-sdk-crypto/pom.xml
index c8e692fac..54f64ab77 100644
--- a/libs/onboarding-sdk-crypto/pom.xml
+++ b/libs/onboarding-sdk-crypto/pom.xml
@@ -4,7 +4,7 @@
     <parent>
         <groupId>it.pagopa.selfcare</groupId>
         <artifactId>onboarding-sdk-pom</artifactId>
-        <version>0.6.0</version>
+        <version>0.6.1</version>
         <relativePath>../onboarding-sdk-pom</relativePath>
     </parent>
     <artifactId>onboarding-sdk-crypto</artifactId>
diff --git a/libs/onboarding-sdk-pom/pom.xml b/libs/onboarding-sdk-pom/pom.xml
index 788d3aa85..4e9d12358 100644
--- a/libs/onboarding-sdk-pom/pom.xml
+++ b/libs/onboarding-sdk-pom/pom.xml
@@ -5,7 +5,7 @@
     <artifactId>onboarding-sdk-pom</artifactId>
     <packaging>pom</packaging>
     <name>onboarding-sdk-pom</name>
-    <version>0.6.0</version>
+    <version>0.6.1</version>
 
     <properties>
         <maven.compiler.source>17</maven.compiler.source>
diff --git a/libs/onboarding-sdk-product/pom.xml b/libs/onboarding-sdk-product/pom.xml
index 69cad93f1..dc8dcfd9d 100644
--- a/libs/onboarding-sdk-product/pom.xml
+++ b/libs/onboarding-sdk-product/pom.xml
@@ -4,12 +4,12 @@
     <parent>
         <groupId>it.pagopa.selfcare</groupId>
         <artifactId>onboarding-sdk-pom</artifactId>
-        <version>0.6.0</version>
+        <version>0.6.1</version>
         <relativePath>../onboarding-sdk-pom</relativePath>
     </parent>
     <artifactId>onboarding-sdk-product</artifactId>
     <name>onboarding-sdk-product</name>
-    <version>0.6.0</version>
+    <version>0.6.1</version>
 
     <properties>
         <jackson.version>2.15.2</jackson.version>

From 9d2af63a78b74e13d1351ae7dfe628f11a7fb523 Mon Sep 17 00:00:00 2001
From: Giampiero Ferrara <giampiero.ferrara@emeal.nttdata.com>
Date: Tue, 10 Dec 2024 09:16:24 +0100
Subject: [PATCH 2/2] [SELC-6159] feat: Update SDK dependency

---
 apps/onboarding-functions/pom.xml | 2 +-
 apps/onboarding-ms/pom.xml        | 2 +-
 apps/pom.xml                      | 2 +-
 test-coverage/pom.xml             | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/apps/onboarding-functions/pom.xml b/apps/onboarding-functions/pom.xml
index 20a0c95dc..2bad72c43 100644
--- a/apps/onboarding-functions/pom.xml
+++ b/apps/onboarding-functions/pom.xml
@@ -22,7 +22,7 @@
     <skipITs>true</skipITs>
     <surefire-plugin.version>3.1.2</surefire-plugin.version>
     <mapstruct.version>1.5.5.Final</mapstruct.version>
-    <commons-sdk-version>0.6.0</commons-sdk-version>
+    <commons-sdk-version>0.6.1</commons-sdk-version>
   </properties>
 
   <dependencyManagement>
diff --git a/apps/onboarding-ms/pom.xml b/apps/onboarding-ms/pom.xml
index 676fceb89..cf7afd881 100644
--- a/apps/onboarding-ms/pom.xml
+++ b/apps/onboarding-ms/pom.xml
@@ -24,7 +24,7 @@
     <skipITs>true</skipITs>
     <surefire-plugin.version>3.1.2</surefire-plugin.version>
     <quarkus-openapi-generator.version>2.4.1</quarkus-openapi-generator.version>
-    <commons-sdk-version>0.6.0</commons-sdk-version>
+    <commons-sdk-version>0.6.1</commons-sdk-version>
   </properties>
   <dependencyManagement>
     <dependencies>
diff --git a/apps/pom.xml b/apps/pom.xml
index 0abda094d..c2ee77de7 100644
--- a/apps/pom.xml
+++ b/apps/pom.xml
@@ -13,7 +13,7 @@
     <packaging>pom</packaging>
 
   <properties>
-    <commons-sdk-version>0.6.0</commons-sdk-version>
+    <commons-sdk-version>0.6.1</commons-sdk-version>
   </properties>
 
     <dependencies>
diff --git a/test-coverage/pom.xml b/test-coverage/pom.xml
index 896bb97ca..395c29a94 100644
--- a/test-coverage/pom.xml
+++ b/test-coverage/pom.xml
@@ -19,7 +19,7 @@
             **/utils/**, **/*Constant*, **/*Config.java, **/error/**, **/filter/**, org/**
         </sonar.coverage.exclusions>
         <sonar.host.url>https://sonarcloud.io</sonar.host.url>
-        <commons-sdk-version>0.6.0</commons-sdk-version>
+        <commons-sdk-version>0.6.1</commons-sdk-version>
     </properties>
 
     <build>