From 29fbfe91f4c432dba3815275f7ab19778dbba5bc Mon Sep 17 00:00:00 2001
From: Simon Brandhof <simon.brandhof@sonarsource.com>
Date: Mon, 22 Jun 2020 10:44:54 +0200
Subject: [PATCH] Upgrade Tomcat to 8.5.56

The vulnerability https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-9484
is not exploitable but it generates a false-positive in SCA reports.
Upgrading kills the noise.
---
 build.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build.gradle b/build.gradle
index ed6859c644e..97c3a849c23 100644
--- a/build.gradle
+++ b/build.gradle
@@ -273,7 +273,7 @@ subprojects {
         entry 'log4j-to-slf4j'
         entry 'log4j-core'
       }
-      dependencySet(group: 'org.apache.tomcat.embed', version: '8.5.53') {
+      dependencySet(group: 'org.apache.tomcat.embed', version: '8.5.56') {
         entry 'tomcat-embed-core'
         entry('tomcat-embed-jasper') {
           exclude 'org.eclipse.jdt.core.compiler:ecj'
-- 
2.39.5