From 7c69117ef55ba9940b7eb456914b2567081840d2 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 27 Dec 2024 07:03:43 +0000
Subject: [PATCH] fix: jbb-bom/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-8539866
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-8539867
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-8539865
---
 jbb-bom/pom.xml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/jbb-bom/pom.xml b/jbb-bom/pom.xml
index 4f5548be2..81aa5c728 100644
--- a/jbb-bom/pom.xml
+++ b/jbb-bom/pom.xml
@@ -62,7 +62,7 @@
         <javax.servlet.api.version>3.1.0</javax.servlet.api.version>
 
         <!-- LOGGING COMPONENTS -->
-        <logback.version>1.2.3</logback.version>
+        <logback.version>1.5.13</logback.version>
         <logback.extensions.spring.version>0.1.5</logback.extensions.spring.version>
         <jcl.over.slf4j.version>1.7.28</jcl.over.slf4j.version>
         <jul.over.slf4j.version>1.7.28</jul.over.slf4j.version>
@@ -90,7 +90,7 @@
         <hikari.cp.version>3.3.1</hikari.cp.version>
         <log4jdbc.remix.version>0.2.7</log4jdbc.remix.version>
         <datasource.proxy.version>1.5.1</datasource.proxy.version>
-        <liquibase.version>3.7.0</liquibase.version>
+        <liquibase.version>4.0.0</liquibase.version>
         <liquibase.slf4j.version>2.0.0</liquibase.slf4j.version>
         <!--    Solr has caused a downgrade of Dropwizard Metrics from 4.0.2 to 3.2.6.