[SECURITY] Upgrade protobuf-java and commons-compress version to fix CVE

[mxdzs0612]

Purpose

Linked issue: close #xxx

LIBRARY	VULNERABILITY ID	SEVERITY	INSTALLED VERSION	FIXED VERSION	TITLE
com.google.protobuf:protobuf-java	CVE-2022-3171	HIGH	3.17.3	3.16.3, 3.19.6, 3.20.3, 3.21.7	protobuf-java: timeout in parser leads to DoS -->avd.aquasec.com/nvd/cve-2022-3171
	CVE-2022-3509	HIGH		3.21.7, 3.20.3, 3.19.6, 3.16.3	Protobuf Java vulnerable to Uncontrolled Resource Consumption -->avd.aquasec.com/nvd/cve-2022-3509
	CVE-2022-3510	HIGH			Protobuf Java vulnerable to Uncontrolled Resource Consumption -->avd.aquasec.com/nvd/cve-2022-3510
org.apache.commons:commons-compress	CVE-2021-35515	HIGH	1.4.1	1.21	apache-commons-compress: infinite loop when reading a specially crafted 7Z archive -->avd.aquasec.com/nvd/cve-2021-35515
	CVE-2021-35516	HIGH			apache-commons-compress: excessive memory allocation when reading a specially crafted 7Z archive -->avd.aquasec.com/nvd/cve-2021-35516
	CVE-2021-35517	HIGH			apache-commons-compress: excessive memory allocation when reading a specially crafted TAR archive -->avd.aquasec.com/nvd/cve-2021-35517
	CVE-2021-36090	HIGH			apache-commons-compress: excessive memory allocation when reading a specially crafted ZIP archive -->avd.aquasec.com/nvd/cve-2021-36090
	CVE-2018-11771	MEDIUM		1.18	apache-commons-compress: ZipArchiveInputStream.read() fails to identify correct EOF allowing for DoS via crafted... -->avd.aquasec.com/nvd/cve-2018-11771

Tests

API and Format

Documentation

[mxdzs0612]

Why canceled 😕

[JingsongLi]

+1