From 0f83b6c3cb25ea909a67707966be4332b31397c9 Mon Sep 17 00:00:00 2001
From: Andreas Scheibal <Andreas.Scheibal@t-systems.com>
Date: Wed, 29 Nov 2023 16:34:18 +0100
Subject: [PATCH] feat(deps): bump spring boot

---
 owasp/suppressions.xml | 6 ++++++
 pom.xml                | 2 +-
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/owasp/suppressions.xml b/owasp/suppressions.xml
index 6cd96e52..70fff6e0 100644
--- a/owasp/suppressions.xml
+++ b/owasp/suppressions.xml
@@ -27,6 +27,11 @@
         <notes>Still WIP</notes>
         <cve>CVE-2022-41862</cve>
     </suppress>
+    <suppress>
+        <notes>Snakeyaml, DoS on user supplied input; no external/unknown/dynamic input to parser at runtime</notes>
+        <cve>CVE-2022-41854</cve>
+        <cve>CVE-2022-1471</cve>
+    </suppress>
     <suppress>
         <notes>No more recent version available. CVE is not affecting us because we are not using CloudFundry, SPEL and Sessions</notes>
         <cve>CVE-2023-20873</cve>
@@ -37,5 +42,6 @@
         <notes>False positive</notes>
         <cve>CVE-2020-8908</cve>
         <cve>CVE-2023-1370</cve>
+        <cve>CVE-2023-24998</cve>
     </suppress>
 </suppressions>
diff --git a/pom.xml b/pom.xml
index c02d4f2b..7f322224 100644
--- a/pom.xml
+++ b/pom.xml
@@ -52,7 +52,7 @@
         <mapstruct.version>1.5.5.Final</mapstruct.version>
         <bcpkix.version>1.76</bcpkix.version>
         <semver4j.version>4.3.0</semver4j.version>
-        <json-schema.version>1.14.2</json-schema.version>
+        <json-schema.version>1.14.3</json-schema.version>
         <shedlock.version>5.2.0</shedlock.version>
         <h2.version>2.2.220</h2.version>
         <!-- plugins -->