fix CI by adding another vulnerability exclustion for org.json:json:jar

.pre-commit-config.yaml

@@ -1,7 +1,7 @@
 ---
 repos:
 - repo: https://github.com/pre-commit/pre-commit-hooks
-  rev: v4.4.0
+  rev: v4.5.0
   hooks:
   - id: trailing-whitespace
   - id: end-of-file-fixer
@@ -27,6 +27,7 @@ repos:
   # TODO enabled when tofu is supported
   # - id: terraform-fmt
   # - id: terraform-validate
+  - id: terragrunt-hclfmt
   - id: tflint
 - repo: https://github.com/jumanjihouse/pre-commit-hooks
   rev: 3.0.0

java/pom.xml

@@ -385,10 +385,11 @@
               <exclude>CVE-2022-1471</exclude>
               <!--
               org.bouncycastle:bcprov-jdk15to18:jar:1.72:compile;
-              https://ossindex.sonatype.org/component/pkg:maven/org.bouncycastle/[email protected]?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1
-              [CVE-2023-33201] CWE-200: Information Exposure (6.5); https://ossindex.sonatype.org/vulnerability/CVE-2023-33201?component-type=maven&component-name=org.bouncycastle%2Fbcprov-jdk15to18&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1
+              [CVE-2023-5072] CWE-770: Allocation of Resources Without Limits or Throttling (7.5);
+              https://ossindex.sonatype.org/vulnerability/CVE-2023-5072?component-type=maven&component-name=org.json%2Fjson&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1
+
               -->
-              <exclude>CVE-2023-33201</exclude>
+              <exclude>CVE-2023-5072</exclude>
             </excludeVulnerabilityIds>
             <reportFile>${project.build.directory}/audit-report.json</reportFile>
           </configuration>