From 6f33c91486325b16debe512c7fa4f98892e0d3bb Mon Sep 17 00:00:00 2001 From: Jonathan Leitschuh Date: Mon, 10 Feb 2020 19:05:39 -0500 Subject: [PATCH] Use HTTPS instead of HTTP to resolve dependencies This fixes a security vulnerability in this project where the `pom.xml` files were configuring Maven to resolve dependencies over HTTP instead of HTTPS. Signed-off-by: Jonathan Leitschuh --- examples/pom.xml | 2 +- pom.xml | 2 +- test-modules/bean-validation-tests/pom.xml | 4 ++-- validation-modules/bean-validation/pom.xml | 4 ++-- 4 files changed, 6 insertions(+), 6 deletions(-) diff --git a/examples/pom.xml b/examples/pom.xml index 0f2195f6..96e701d8 100644 --- a/examples/pom.xml +++ b/examples/pom.xml @@ -42,7 +42,7 @@ jboss - http://repository.jboss.com/maven2 + https://repository.jboss.com/maven2 true diff --git a/pom.xml b/pom.xml index e135c240..096e3f6e 100644 --- a/pom.xml +++ b/pom.xml @@ -312,7 +312,7 @@ maven2-repository.dev.java.net Java.net Repository for Maven - http://download.java.net/maven/2/ + https://download.java.net/maven/2/ default diff --git a/test-modules/bean-validation-tests/pom.xml b/test-modules/bean-validation-tests/pom.xml index 98e16805..b02630d8 100644 --- a/test-modules/bean-validation-tests/pom.xml +++ b/test-modules/bean-validation-tests/pom.xml @@ -38,7 +38,7 @@ jboss - http://repository.jboss.com/maven2 + https://repository.jboss.com/maven2 true @@ -48,7 +48,7 @@ jboss-snapshot - http://snapshots.jboss.org/maven2 + https://snapshots.jboss.org/maven2 true diff --git a/validation-modules/bean-validation/pom.xml b/validation-modules/bean-validation/pom.xml index 42087d8d..46265e75 100644 --- a/validation-modules/bean-validation/pom.xml +++ b/validation-modules/bean-validation/pom.xml @@ -36,7 +36,7 @@ jboss - http://repository.jboss.com/maven2 + https://repository.jboss.com/maven2 true @@ -46,7 +46,7 @@ jboss-snapshot - http://snapshots.jboss.org/maven2 + https://snapshots.jboss.org/maven2 true