From f3eb256dc0910aee5db8faf4b72b3945d93d5460 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 26 Aug 2025 06:37:29 +0000
Subject: [PATCH] fix: pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-11998131
- https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-11998139
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-12008931
- https://snyk.io/vuln/SNYK-JAVA-ORGGRAALVMSDK-11998135
---
 pom.xml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/pom.xml b/pom.xml
index 779e4c48..59923530 100644
--- a/pom.xml
+++ b/pom.xml
@@ -7,7 +7,7 @@
 		<groupId>org.springframework.boot</groupId>
 		<artifactId>spring-boot-starter-parent</artifactId>
 		<version>2.3.5.RELEASE</version>
-		<relativePath /> <!-- lookup parent from repository -->
+		<relativePath/> <!-- lookup parent from repository -->
 	</parent>
 	<groupId>com.example</groupId>
 	<artifactId>demo</artifactId>
@@ -43,7 +43,7 @@
 		<dependency>
 			<groupId>io.quarkus</groupId>
 			<artifactId>quarkus-oidc</artifactId>
-			<version>2.13.7.Final</version>
+			<version>3.8.3</version>
 		</dependency>
 		<dependency> 
 			<groupId>org.keycloak</groupId>
@@ -75,7 +75,7 @@
 		<dependency>
 			<groupId>org.springframework</groupId>
 			<artifactId>spring-webmvc</artifactId>
-			<version>6.0.6</version>
+			<version>6.2.10</version>
 		</dependency>
 		<dependency>
 			<groupId>org.keycloak</groupId>
@@ -90,7 +90,7 @@
 		<dependency>
 			<groupId>org.springframework.security</groupId>
 			<artifactId>spring-security-web</artifactId>
-			<version>5.7.3</version>
+			<version>6.4.9</version>
 		</dependency>
 		<dependency>
 			<groupId>com.mysql</groupId>