From 053d47c3b066364cf588f4cb6b8bfdf95e646fb7 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 27 Jan 2026 00:24:59 +0000
Subject: [PATCH] fix: pom.xml & dropwizard/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-15062482
---
 dropwizard/pom.xml | 8 +++-----
 pom.xml            | 6 +++---
 2 files changed, 6 insertions(+), 8 deletions(-)

diff --git a/dropwizard/pom.xml b/dropwizard/pom.xml
index 36f2ec43f024..83ee76f46d82 100644
--- a/dropwizard/pom.xml
+++ b/dropwizard/pom.xml
@@ -48,10 +48,8 @@
                         </goals>
                         <configuration>
                             <transformers>
-                                <transformer
-                                    implementation="org.apache.maven.plugins.shade.resource.ServicesResourceTransformer" />
-                                <transformer
-                                    implementation="org.apache.maven.plugins.shade.resource.ManifestResourceTransformer">
+                                <transformer implementation="org.apache.maven.plugins.shade.resource.ServicesResourceTransformer"/>
+                                <transformer implementation="org.apache.maven.plugins.shade.resource.ManifestResourceTransformer">
                                     <mainClass>com.baeldung.dropwizard.introduction.IntroductionApplication</mainClass>
                                 </transformer>
                             </transformers>
@@ -63,7 +61,7 @@
     </build>
 
     <properties>
-        <dropwizard.version>2.0.0</dropwizard.version>
+        <dropwizard.version>4.0.12</dropwizard.version>
     </properties>
 
 </project>
\ No newline at end of file
diff --git a/pom.xml b/pom.xml
index 197e946974c6..72a940eafb3e 100644
--- a/pom.xml
+++ b/pom.xml
@@ -262,7 +262,7 @@
                                         </goals>
                                     </pluginExecutionFilter>
                                     <action>
-                                        <ignore></ignore>
+                                        <ignore/>
                                     </action>
                                 </pluginExecution>
                                 <pluginExecution>
@@ -281,7 +281,7 @@
                                         </goals>
                                     </pluginExecutionFilter>
                                     <action>
-                                        <ignore></ignore>
+                                        <ignore/>
                                     </action>
                                 </pluginExecution>
                             </pluginExecutions>
@@ -1445,7 +1445,7 @@
 
         <!-- logging -->
         <org.slf4j.version>1.7.32</org.slf4j.version>
-        <logback.version>1.2.6</logback.version>
+        <logback.version>1.5.25</logback.version>
 
         <!-- plugins -->
         <maven-surefire-plugin.version>2.22.2</maven-surefire-plugin.version>