From 25f1d998c68a0f10875cbaa8632baaf5baddb96d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?St=C3=A9phane=20Brunner?= <stephane.brunner@camptocamp.com>
Date: Thu, 18 Jan 2024 10:05:13 +0100
Subject: [PATCH] Fix CVE
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

    Upgrade com.amazonaws:aws-java-sdk-s3@1.12.629 to com.amazonaws:aws-java-sdk-s3@1.12.639 to fix
    ✗ Allocation of Resources Without Limits or Throttling (new) [High Severity][https://security.snyk.io/vuln/SNYK-JAVA-SOFTWAREAMAZONION-6153869] in software.amazon.ion:ion-java@1.0.2
      introduced by com.amazonaws:aws-java-sdk-s3@1.12.629 > com.amazonaws:aws-java-sdk-core@1.12.629 > software.amazon.ion:ion-java@1.0.2
---
 core/build.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/build.gradle b/core/build.gradle
index bfb5098098..10afd10e86 100644
--- a/core/build.gradle
+++ b/core/build.gradle
@@ -185,7 +185,7 @@ dependencies {
             'com.github.spullara.cli-parser:cli-parser:1.1.6',
             'org.apache.httpcomponents:httpclient:4.5.14',
             'com.sun.mail:javax.mail:1.6.2',
-            'com.amazonaws:aws-java-sdk-s3:1.12.629',
+            'com.amazonaws:aws-java-sdk-s3:1.12.639',
             'com.adobe.xmp:xmpcore:6.1.11',
             'io.sentry:sentry-logback:6.25.2',
             'net.logstash.logback:logstash-logback-encoder:7.1.1',