From f4c7ffaefc770b3821cea7050946ec04c8c47bff Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Jul 2024 07:09:09 +0000
Subject: [PATCH 1/9] fix: kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
 to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-NGHTTP2-5953384
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-5955037
- https://snyk.io/vuln/SNYK-DEBIAN11-GIT-3232724
---
 kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD b/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
index c44f9029666..b2232657f8d 100644
--- a/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
+++ b/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
@@ -1,4 +1,4 @@
-FROM openjdk:11
+FROM openjdk:17.0.2
 
 # can be passed during Docker build as build time environment for github branch to pickup configuration from.
 ARG spring_config_label

From 81af95d5823f9eeeb913666f56546e2a79674170 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Jul 2024 07:09:45 +0000
Subject: [PATCH 2/9] fix: kernel/kernel-config-server/Dockerfile-no-updates to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-NGHTTP2-5953384
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-1585150
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-5955037
---
 kernel/kernel-config-server/Dockerfile-no-updates | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-config-server/Dockerfile-no-updates b/kernel/kernel-config-server/Dockerfile-no-updates
index 2f2b8cb3adb..b4afad4b93a 100644
--- a/kernel/kernel-config-server/Dockerfile-no-updates
+++ b/kernel/kernel-config-server/Dockerfile-no-updates
@@ -1,4 +1,4 @@
-FROM openjdk:11
+FROM openjdk:17.0.2
 
 # can be passed during Docker build as build time environment for  keystore location for encryption
 ARG encrypt_keyStore_location

From a93a28afa0279345e8db8fa98b301961765eddbc Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Jul 2024 07:10:30 +0000
Subject: [PATCH 3/9] fix: kernel/kernel-bom/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-32236
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-1015415
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356
---
 kernel/kernel-bom/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-bom/pom.xml b/kernel/kernel-bom/pom.xml
index 62484149570..ca21ade8bde 100644
--- a/kernel/kernel-bom/pom.xml
+++ b/kernel/kernel-bom/pom.xml
@@ -53,7 +53,7 @@
 		<modelmapper.version>2.1.1</modelmapper.version>
 		<springdoc.version>1.7.0</springdoc.version>
 		
-		<guava.version>19.0</guava.version>
+		<guava.version>32.0.0-android</guava.version>
 		
 		<swagger.core.version>2.0.7</swagger.core.version>
 

From 9ae783efe191a236ba073c981391b4673e472f95 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Jul 2024 07:11:55 +0000
Subject: [PATCH 4/9] fix: kernel/kernel-authcodeflowproxy-api/pom.xml to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6435950
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-541187
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-6247635
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-467268
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-568163
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356
---
 kernel/kernel-authcodeflowproxy-api/pom.xml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/kernel/kernel-authcodeflowproxy-api/pom.xml b/kernel/kernel-authcodeflowproxy-api/pom.xml
index 69a247be7a8..5ed30b0a1ca 100644
--- a/kernel/kernel-authcodeflowproxy-api/pom.xml
+++ b/kernel/kernel-authcodeflowproxy-api/pom.xml
@@ -26,7 +26,7 @@
 		<maven-shade-plugin.version>2.3</maven-shade-plugin.version>
 
 		<!-- spring -->
-		<spring.boot.version>2.0.2.RELEASE</spring.boot.version>
+		<spring.boot.version>3.1.9</spring.boot.version>
 		<spring.data.jpa.version>2.0.7.RELEASE</spring.data.jpa.version>
 		<spring.security.test.version>5.0.5.RELEASE</spring.security.test.version>
 		<spring-cloud-config.version>2.0.4.RELEASE</spring-cloud-config.version>
@@ -131,7 +131,7 @@
 		<maven-shade-plugin.version>2.3</maven-shade-plugin.version>
 
 		<!-- spring -->
-		<spring.boot.version>2.0.2.RELEASE</spring.boot.version>
+		<spring.boot.version>3.1.9</spring.boot.version>
 		<spring.data.jpa.version>2.0.7.RELEASE</spring.data.jpa.version>
 		<spring.security.test.version>5.0.5.RELEASE</spring.security.test.version>
 		<spring-cloud-config.version>2.0.4.RELEASE</spring-cloud-config.version>
@@ -238,7 +238,7 @@
 		<dependency>
 			<groupId>com.auth0</groupId>
 			<artifactId>jwks-rsa</artifactId>
-			<version>0.18.0</version>
+			<version>0.22.1</version>
 		</dependency>
 		<dependency>
 			<groupId>org.powermock</groupId>

From e8b85458f7bc53a947bf3ad42d7a7747e296efc6 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Jul 2024 07:12:53 +0000
Subject: [PATCH 5/9] fix: kernel/kernel-pdfgenerator-itext/pom.xml to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-2320389
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-1052448
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-2841508
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-541282
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-541284
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-2391484
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-2391485
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-2391486
---
 kernel/kernel-pdfgenerator-itext/pom.xml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/kernel/kernel-pdfgenerator-itext/pom.xml b/kernel/kernel-pdfgenerator-itext/pom.xml
index a7672a4404d..78d8590a67f 100644
--- a/kernel/kernel-pdfgenerator-itext/pom.xml
+++ b/kernel/kernel-pdfgenerator-itext/pom.xml
@@ -16,10 +16,10 @@
 		<kernel.core.version>1.2.1-SNAPSHOT</kernel.core.version>
 		<jacoco.maven.plugin.version>0.8.11</jacoco.maven.plugin.version>
 
-		<itextcore.version>7.1.0</itextcore.version>
+		<itextcore.version>7.2.4</itextcore.version>
 		<itexthtml2pdf.version>2.0.0</itexthtml2pdf.version>
 		<itext.version>5.5.13.3</itext.version>
-		<bouncycastle.version>1.66</bouncycastle.version>
+		<bouncycastle.version>1.69</bouncycastle.version>
 	</properties>
      	<dependencyManagement>
 		<dependencies>
@@ -78,12 +78,12 @@
 		<dependency>
 		    <groupId>com.itextpdf</groupId>
 		    <artifactId>kernel</artifactId>
-		    <version>7.1.0</version>
+		    <version>7.2.4</version>
 		</dependency>
 		<dependency>
 		    <groupId>com.itextpdf</groupId>
 		    <artifactId>io</artifactId>
-		    <version>7.1.0</version>
+		    <version>7.2.2</version>
 		</dependency>
 	</dependencies>
 	<distributionManagement>

From 6596589a945a401c2e95ed2732b26472091c968e Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Jul 2024 07:13:33 +0000
Subject: [PATCH 6/9] fix: kernel/kernel-bom/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGJSON-5488379
- https://snyk.io/vuln/SNYK-JAVA-ORGJSON-5962464
---
 kernel/kernel-bom/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-bom/pom.xml b/kernel/kernel-bom/pom.xml
index ca21ade8bde..1317d4334be 100644
--- a/kernel/kernel-bom/pom.xml
+++ b/kernel/kernel-bom/pom.xml
@@ -46,7 +46,7 @@
 				
 		<powermock.version>2.0.9</powermock.version>
 		
-		<json.version>20180813</json.version>
+		<json.version>20231013</json.version>
 		<json-simple-version>1.1.1</json-simple-version>
 		<io.jsonwebtoken.jjwt.version>0.6.0</io.jsonwebtoken.jjwt.version>
 		<commons-collections.version>3.2.2</commons-collections.version>

From 328b4f42758053f7abc68ffa1fa2310a983f4874 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Jul 2024 07:15:45 +0000
Subject: [PATCH 7/9] fix: kernel/kernel-bom/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-7430175
- https://snyk.io/vuln/SNYK-JAVA-COMMONSIO-1277109
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-6457293
- https://snyk.io/vuln/SNYK-JAVA-IONETTY-6483812
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-6444790
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-6597980
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHTTPCOMPONENTS-1048058
---
 kernel/kernel-bom/pom.xml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/kernel/kernel-bom/pom.xml b/kernel/kernel-bom/pom.xml
index 1317d4334be..5ad54bf0359 100644
--- a/kernel/kernel-bom/pom.xml
+++ b/kernel/kernel-bom/pom.xml
@@ -23,7 +23,7 @@
 		<javax.validation-api.version>2.0.1.Final</javax.validation-api.version>
 		<javax.interceptor.version>1.2</javax.interceptor.version>
 		
-		<commons-io>2.6</commons-io>
+		<commons-io>2.7</commons-io>
 		<commons-math3>3.6.1</commons-math3>
 		
 		<bouncycastle.version>1.78.1</bouncycastle.version>
@@ -34,9 +34,9 @@
 		
 		<aspectjweaver-version>1.9.21.2</aspectjweaver-version>
 
-		<apache.httpcomponents.version>4.5.6</apache.httpcomponents.version>
+		<apache.httpcomponents.version>4.5.13</apache.httpcomponents.version>
 		
-		<vertx.version>3.9.13</vertx.version>
+		<vertx.version>4.4.9</vertx.version>
 		<hazelcast-version>3.9.4</hazelcast-version>
 		
 		<jwt.version> 3.8.1</jwt.version>

From 377caea4b6336467055e3fdd584dbc7e6021b9c2 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Jul 2024 07:16:49 +0000
Subject: [PATCH 8/9] fix: kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
 to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ORACLE8-GLIBC-5935529
- https://snyk.io/vuln/SNYK-ORACLE8-GLIBCCOMMON-5935226
- https://snyk.io/vuln/SNYK-ORACLE8-GLIBCMINIMALLANGPACK-5935235
- https://snyk.io/vuln/SNYK-ORACLE8-LIBNGHTTP2-6016069
- https://snyk.io/vuln/SNYK-ORACLE8-SYSTEMDLIBS-5798196
---
 kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD b/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
index b2232657f8d..dd1f351b42d 100644
--- a/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
+++ b/kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD
@@ -1,4 +1,4 @@
-FROM openjdk:17.0.2
+FROM openjdk:23-ea-30-jdk-oraclelinux8
 
 # can be passed during Docker build as build time environment for github branch to pickup configuration from.
 ARG spring_config_label

From 67a1b5a64cfffe4de3a901c6c3c8d09ea7158537 Mon Sep 17 00:00:00 2001
From: "rajapandi.m" <rajapandi.m@technoforte.co.in>
Date: Tue, 23 Jul 2024 18:39:28 +0530
Subject: [PATCH 9/9] test

---
 .../main/java/io/mosip/kernel/core/util/FileUtils.java | 10 +++-------
 1 file changed, 3 insertions(+), 7 deletions(-)

diff --git a/kernel/kernel-core/src/main/java/io/mosip/kernel/core/util/FileUtils.java b/kernel/kernel-core/src/main/java/io/mosip/kernel/core/util/FileUtils.java
index 75ec5fda026..ff2eacf03c0 100644
--- a/kernel/kernel-core/src/main/java/io/mosip/kernel/core/util/FileUtils.java
+++ b/kernel/kernel-core/src/main/java/io/mosip/kernel/core/util/FileUtils.java
@@ -452,13 +452,9 @@ public static boolean isFileOlder(File file, Date date) {
 	 * @throws IOException if an IO error occurs while checking the file.
 	 */
 	public static boolean isSymlink(File file) throws IOException {
-		try {
-			return org.apache.commons.io.FileUtils.isSymlink(file);
-		} catch (java.io.IOException e) {
-			throw new IOException(FileUtilConstants.IO_ERROR_CODE.getErrorCode(),
-					FileUtilConstants.IO_ERROR_CODE.getMessage(), e.getCause());
-		}
-	}
+    return org.apache.commons.io.FileUtils.isSymlink(file);
+}
+
 
 	/**
 	 * Allows iteration over the files in given directory (and optionally its sub