BE: Chore: Bump Spring Boot to 3.5.6 (#1354)

yeikel · germanosin · web-flow · commit 47838bdaeb79 · 2025-09-19T13:18:49.000+02:00
Co-authored-by: German Osin &lt;german.osin@gmail.com&gt;
diff --git a/api/build.gradle b/api/build.gradle
@@ -72,12 +72,6 @@ dependencies {
     // CVE Fixes
     implementation libs.apache.commons.compress
     implementation libs.okhttp3.logging.intercepter
-    // START Fixes https://www.cve.org/CVERecord?id=CVE-2025-58056 and https://www.cve.org/CVERecord?id=CVE-2025-58057
-    implementation libs.netty.codec
-    implementation libs.netty.codec.http
-    // END Fixes https://www.cve.org/CVERecord?id=CVE-2025-58056 and https://www.cve.org/CVERecord?id=CVE-2025-58057
-    // CVE Fixes End
-
 
     implementation libs.modelcontextprotocol.spring.webflux
     implementation libs.victools.jsonschema.generator
diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml
@@ -1,7 +1,6 @@
 [versions]
-spring-boot = '3.5.5'
+spring-boot = '3.5.6'
 nimbus-jose-jwt = '10.0.2'
-netty = '4.1.125.Final'
 
 aws-msk-auth = '2.3.0'
 azure-identity = '1.15.4'
@@ -155,11 +154,4 @@ snappy = {module = 'org.xerial.snappy:snappy-java', version = '1.1.10.7'}
 
 lucene = {module = 'org.apache.lucene:lucene-core', version.ref = 'lucene'}
 lucene-queryparser = {module = 'org.apache.lucene:lucene-queryparser', version.ref = 'lucene'}
-lucene-analysis-common = {module = 'org.apache.lucene:lucene-analysis-common', version.ref = 'lucene'}
-
-# CVE fixes
-# START Fixes https://www.cve.org/CVERecord?id=CVE-2025-58056 and https://www.cve.org/CVERecord?id=CVE-2025-58057
-netty-codec = {module = 'io.netty:netty-codec', version.ref = 'netty'}
-netty-codec-http = {module = 'io.netty:netty-codec-http', version.ref = 'netty'}
-# END Fixes https://www.cve.org/CVERecord?id=CVE-2025-58056 and https://www.cve.org/CVERecord?id=CVE-2025-58057
-
+lucene-analysis-common = {module = 'org.apache.lucene:lucene-analysis-common', version.ref = 'lucene'}
