Bump google-api-client version from 1.32.1 to 1.35.2 (#145)

An [auth bypass vulnerability](https://nvd.nist.gov/vuln/detail/CVE-2021-22573) was found in com.google.oauth-client:google-oauth-client which is a dependency of google-api-client. Bumping google-api-client gets us com.google.oauth-client:google-oauth-client:1.34.1 which does not have the CVE (previous version was 1.31.5).
looker-open-source · Jul 19, 2022 · 3734a1f · 3734a1f
1 parent f0c9cb9
commit 3734a1f
Showing 1 changed file with 7 additions and 6 deletions.
diff --git a/pom.xml b/pom.xml
@@ -109,27 +109,27 @@
     <dependency>
       <groupId>com.google.api-client</groupId>
       <artifactId>google-api-client</artifactId>
-      <version>1.32.1</version>
+      <version>1.35.2</version>
     </dependency>
     <dependency>
       <groupId>com.google.auth</groupId>
       <artifactId>google-auth-library-oauth2-http</artifactId>
-      <version>1.0.0</version>
+      <version>1.7.0</version>
     </dependency>
     <dependency>
       <groupId>com.google.http-client</groupId>
       <artifactId>google-http-client-jackson2</artifactId>
-      <version>1.39.2</version>
+      <version>1.42.0</version>
     </dependency>
     <dependency>
       <groupId>com.google.apis</groupId>
       <artifactId>google-api-services-bigquery</artifactId>
-      <version>v2-rev20210617-1.32.1</version>
+      <version>v2-rev20220611-1.32.1</version>
     </dependency>
     <dependency>
       <groupId>com.google.apis</groupId>
       <artifactId>google-api-services-iamcredentials</artifactId>
-      <version>v1-rev20210326-1.32.1</version>
+      <version>v1-rev20211203-1.32.1</version>
     </dependency>
     <!-- START TEST DEPENDENCIES -->
     <dependency>
@@ -141,7 +141,7 @@
     <dependency>
       <groupId>com.google.code.gson</groupId>
       <artifactId>gson</artifactId>
-      <version>2.8.9</version>
+      <version>2.9.0</version>
       <scope>test</scope>
     </dependency>
     <dependency>
@@ -192,6 +192,7 @@
       <plugin>
         <groupId>org.apache.maven.plugins</groupId>
         <artifactId>maven-javadoc-plugin</artifactId>
+        <version>3.4.0</version>
         <configuration>
           <!-- this project has a lot of incorrect javadoc. punting on it for now fixing it. -->
           <doclint>none</doclint>