From 6df121deebd7d2d9369949708f0fb5165310db12 Mon Sep 17 00:00:00 2001
From: Tor-Christian Tangenes <torchrct@gmail.com>
Date: Wed, 22 Nov 2023 12:16:32 +0100
Subject: [PATCH] Fix vulnerabilities CVE-2022-1471 (snakeyaml) and
 CVE-2023-44981 (zookeeper)

---
 build.gradle.kts | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/build.gradle.kts b/build.gradle.kts
index c011f9a5..79c8b4bc 100644
--- a/build.gradle.kts
+++ b/build.gradle.kts
@@ -117,6 +117,22 @@ dependencies {
     testImplementation("com.h2database:h2:${Versions.h2Version}")
     testImplementation("io.mockk:mockk:${Versions.mockkVersion}")
     testImplementation("com.ninja-squad:springmockk:${Versions.springMockkVersion}")
+
+    constraints {
+        implementation("org.apache.zookeeper:zookeeper") {
+            because("CVE-2023-44981")
+            version {
+                require("3.9.1")
+            }
+        }
+
+        implementation("org.yaml:snakeyaml") {
+            because("CVE-2022-1471")
+            version {
+                require("2.2")
+            }
+        }
+    }
 }
 
 java.toolchain {