From fc415daaa4f46ea0f638490844037332227ccd2c Mon Sep 17 00:00:00 2001
From: Mingshi Liu <113382730+mingshl@users.noreply.github.com>
Date: Tue, 30 Apr 2024 14:00:40 -0700
Subject: [PATCH] fix CVE for org.eclipse.core.runtime (#2378)

Signed-off-by: Mingshi Liu <mingshl@amazon.com>
(cherry picked from commit aa3616db8d3d35733a46cf4d6801b3bc78d49055)
---
 build.gradle | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/build.gradle b/build.gradle
index 499e3f7893..e7a94c37a5 100644
--- a/build.gradle
+++ b/build.gradle
@@ -37,6 +37,11 @@ buildscript {
     dependencies {
         classpath "${opensearch_group}.gradle:build-tools:${opensearch_version}"
         classpath "gradle.plugin.com.dorongold.plugins:task-tree:1.5"
+        configurations.all {
+            resolutionStrategy {
+                force("org.eclipse.platform:org.eclipse.core.runtime:3.29.0") // for spotless transitive dependency CVE (for 3.26.100)
+            }
+        }
     }
 }