snyk fix

kernel/kernel-authcodeflowproxy-api/pom.xml

@@ -26,7 +26,7 @@
 		<maven-shade-plugin.version>2.3</maven-shade-plugin.version>
 
 		<!-- spring -->
-		<spring.boot.version>2.0.2.RELEASE</spring.boot.version>
+		<spring.boot.version>3.1.9</spring.boot.version>
 		<spring.data.jpa.version>2.0.7.RELEASE</spring.data.jpa.version>
 		<spring.security.test.version>5.0.5.RELEASE</spring.security.test.version>
 		<spring-cloud-config.version>2.0.4.RELEASE</spring-cloud-config.version>
@@ -131,7 +131,7 @@
 		<maven-shade-plugin.version>2.3</maven-shade-plugin.version>
 
 		<!-- spring -->
-		<spring.boot.version>2.0.2.RELEASE</spring.boot.version>
+		<spring.boot.version>3.1.9</spring.boot.version>
 		<spring.data.jpa.version>2.0.7.RELEASE</spring.data.jpa.version>
 		<spring.security.test.version>5.0.5.RELEASE</spring.security.test.version>
 		<spring-cloud-config.version>2.0.4.RELEASE</spring-cloud-config.version>
@@ -238,7 +238,7 @@
 		<dependency>
 			<groupId>com.auth0</groupId>
 			<artifactId>jwks-rsa</artifactId>
-			<version>0.18.0</version>
+			<version>0.22.1</version>
 		</dependency>
 		<dependency>
 			<groupId>org.powermock</groupId>

kernel/kernel-bom/pom.xml

@@ -23,7 +23,7 @@
 		<javax.validation-api.version>2.0.1.Final</javax.validation-api.version>
 		<javax.interceptor.version>1.2</javax.interceptor.version>
 
-		<commons-io>2.6</commons-io>
+		<commons-io>2.7</commons-io>
 		<commons-math3>3.6.1</commons-math3>
 
 		<bouncycastle.version>1.78.1</bouncycastle.version>
@@ -34,9 +34,9 @@
 
 		<aspectjweaver-version>1.9.21.2</aspectjweaver-version>
 
-		<apache.httpcomponents.version>4.5.6</apache.httpcomponents.version>
+		<apache.httpcomponents.version>4.5.13</apache.httpcomponents.version>
 
-		<vertx.version>3.9.13</vertx.version>
+		<vertx.version>4.4.9</vertx.version>
 		<hazelcast-version>3.9.4</hazelcast-version>
 
 		<jwt.version> 3.8.1</jwt.version>
@@ -46,14 +46,14 @@
 
 		<powermock.version>2.0.9</powermock.version>
 
-		<json.version>20180813</json.version>
+		<json.version>20231013</json.version>
 		<json-simple-version>1.1.1</json-simple-version>
 		<io.jsonwebtoken.jjwt.version>0.6.0</io.jsonwebtoken.jjwt.version>
 		<commons-collections.version>3.2.2</commons-collections.version>
 		<modelmapper.version>2.1.1</modelmapper.version>
 		<springdoc.version>1.7.0</springdoc.version>
 
-		<guava.version>19.0</guava.version>
+		<guava.version>32.0.0-android</guava.version>
 
 		<swagger.core.version>2.0.7</swagger.core.version>
 

kernel/kernel-config-server/Dockerfile-no-updates

@@ -1,4 +1,4 @@
-FROM openjdk:11
+FROM openjdk:17.0.2
 
 # can be passed during Docker build as build time environment for  keystore location for encryption
 ARG encrypt_keyStore_location

kernel/kernel-core/src/main/java/io/mosip/kernel/core/util/FileUtils.java

@@ -452,13 +452,9 @@ public static boolean isFileOlder(File file, Date date) {
 	 * @throws IOException if an IO error occurs while checking the file.
 	 */
 	public static boolean isSymlink(File file) throws IOException {
-		try {
-			return org.apache.commons.io.FileUtils.isSymlink(file);
-		} catch (java.io.IOException e) {
-			throw new IOException(FileUtilConstants.IO_ERROR_CODE.getErrorCode(),
-					FileUtilConstants.IO_ERROR_CODE.getMessage(), e.getCause());
-		}
-	}
+    return org.apache.commons.io.FileUtils.isSymlink(file);
+}
+
 
 	/**
 	 * Allows iteration over the files in given directory (and optionally its sub

kernel/kernel-pdfgenerator-itext/pom.xml

@@ -16,10 +16,10 @@
 		<kernel.core.version>1.2.1-SNAPSHOT</kernel.core.version>
 		<jacoco.maven.plugin.version>0.8.11</jacoco.maven.plugin.version>
 
-		<itextcore.version>7.1.0</itextcore.version>
+		<itextcore.version>7.2.4</itextcore.version>
 		<itexthtml2pdf.version>2.0.0</itexthtml2pdf.version>
 		<itext.version>5.5.13.3</itext.version>
-		<bouncycastle.version>1.66</bouncycastle.version>
+		<bouncycastle.version>1.69</bouncycastle.version>
 	</properties>
      	<dependencyManagement>
 		<dependencies>
@@ -78,12 +78,12 @@
 		<dependency>
 		    <groupId>com.itextpdf</groupId>
 		    <artifactId>kernel</artifactId>
-		    <version>7.1.0</version>
+		    <version>7.2.4</version>
 		</dependency>
 		<dependency>
 		    <groupId>com.itextpdf</groupId>
 		    <artifactId>io</artifactId>
-		    <version>7.1.0</version>
+		    <version>7.2.2</version>
 		</dependency>
 	</dependencies>
 	<distributionManagement>

kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD

@@ -1,4 +1,4 @@
-FROM openjdk:11
+FROM openjdk:23-ea-30-jdk-oraclelinux8
 
 # can be passed during Docker build as build time environment for github branch to pickup configuration from.
 ARG spring_config_label