From d88920f1aef232adecd473143c5132e8af65d7f6 Mon Sep 17 00:00:00 2001
From: Jim Anderson <jimranderson@gmail.com>
Date: Wed, 26 Oct 2022 11:46:28 -0500
Subject: [PATCH] Update dependencies to address CVE-2022-42003

---
 lib/build.gradle | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/lib/build.gradle b/lib/build.gradle
index ecedae9..861e8fc 100644
--- a/lib/build.gradle
+++ b/lib/build.gradle
@@ -33,14 +33,14 @@ compileJava {
 ext.springSecurityVersion = '4.2.20.RELEASE'
 
 dependencies {
-    api "com.auth0:java-jwt:3.19.1"
-    api "com.auth0:jwks-rsa:0.21.1"
+    api "com.auth0:java-jwt:3.19.3"
+    api "com.auth0:jwks-rsa:0.21.2"
     api "org.springframework.security:spring-security-core:${springSecurityVersion}"
     api "org.springframework.security:spring-security-web:${springSecurityVersion}"
     api "org.springframework.security:spring-security-config:${springSecurityVersion}"
 
-    implementation "commons-codec:commons-codec:1.14"
-    implementation "org.slf4j:slf4j-api:1.7.30"
+    implementation "commons-codec:commons-codec:1.15"
+    implementation "org.slf4j:slf4j-api:1.7.36"
     compileOnly "javax.servlet:servlet-api:2.5"
 
     testImplementation "junit:junit:4.12"