[Snyk] Fix for 7 vulnerabilities

[sumodgeorge]

Snyk has created this PR to fix 7 vulnerabilities in the maven dependencies of this project.

Snyk changed the following file(s):

• pom.xml

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score	Upgrade
	Arbitrary Code Execution SNYK-JAVA-XALAN-2953385	811	Proof of Concept
	Uncontrolled Recursion SNYK-JAVA-COMMONSLANG-10734077	654	No Known Exploit
	Uncontrolled Recursion SNYK-JAVA-ORGAPACHECOMMONS-10734078	654	No Known Exploit
	Incorrect Implementation of Authentication Algorithm SNYK-JAVA-ORGPOSTGRESQL-10343494	654	No Known Exploit
	Stack-based Buffer Overflow SNYK-JAVA-COMFASTERXMLJACKSONCORE-10500754	649	org.openidentityplatform.opendj:opendj-core: 4.9.4 -> 4.10.0 No Known Exploit
	Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-7569538	649	org.openidentityplatform.opendj:opendj-core: 4.9.4 -> 4.10.0 No Known Exploit
	Allocation of Resources Without Limits or Throttling SNYK-JAVA-COMMONSFILEUPLOAD-10363252	649	No Known Exploit

Vulnerabilities that could not be fixed

• Upgrade:
  • Could not upgrade org.openidentityplatform.commons:json-resource-http@2.2.4 to org.openidentityplatform.commons:json-resource-http@2.4.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:OpenFM@15.1.7-SNAPSHOT to org.openidentityplatform.openam:OpenFM@15.2.1; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-auth-ntlmv2@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-auth-ntlmv2@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-auth-recaptcha@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-auth-recaptcha@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-auth-webauthn@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-auth-webauthn@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-cassandra-datastore@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-cassandra-datastore@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-client-sts@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-client-sts@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-common-sts@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-common-sts@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-core@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-core@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-publish-sts@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-publish-sts@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-rest-sts@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-rest-sts@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.openam:openam-selfservice@15.1.7-SNAPSHOT to org.openidentityplatform.openam:openam-selfservice@15.2.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location
• Could not upgrade org.openidentityplatform.opendj:opendj-server-legacy@4.9.4 to org.openidentityplatform.opendj:opendj-server-legacy@4.10.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Denial of Service (DoS)
🦉 Allocation of Resources Without Limits or Throttling
🦉 Arbitrary Code Execution