chore(jans): upgrade packages installed to a non-vulnerable version

README.md

@@ -19,7 +19,7 @@ Janssen software.
 
 If your enteprise needs Janssen for a production deployment, Gluu offers a 
 commercial distribution of Janssen Project Components called 
-[Gluu Flex](https://gluu.org/flex) and [hosting](https://gluu.org/solo).
+[Gluu Flex](https://gluu.org/flex) and [Gluu Solo](https://gluu.org/solo).
 
 ----
 

automation/requirements.txt

@@ -2,5 +2,5 @@ ruamel.yaml>=0.16.10
 python-dateutil
 dockerfile-parse
 requests-html
-lxml-html-clean
+lxml-html-clean>=0.4.0
 websockets>=10.0 # not directly required, pinned by Snyk to avoid a vulnerability

demos/benchmarking/docker-jans-loadtesting-jmeter/README.md

@@ -53,7 +53,7 @@ Installation depends on the set of environment variables shown below. These envi
 
 #### Loading users
 
-Edit the custom connection values and other envs for the file `load_users_<persistence_of_choice>_job.yaml` found in the [yaml](./yaml/load-users) folder and run :
+Edit the custom connection values and other envs for the [load_users_rdbms_job.yaml](./yaml/load-users/load_users_rdbms_job.yaml) file and run:
 
 ```bash
 kubectl apply -f load_users_<persistence_of_choice>_job.yaml
@@ -155,7 +155,7 @@ cat << EOF > ropc_client.json
 EOF
 ```
 
-Download or build [config-cli-tui](../../../jans-cli-tui) and run:
+Run the follwing:
 
 ```bash
 # add -noverify if your fqdn is not registered

demos/benchmarking/docker-jans-loadtesting-jmeter/requirements.txt

@@ -1,5 +1,5 @@
 # pinned to py3-grpcio version to avoid failure on native extension build
-joblib
+joblib>=1.2.0
 pygtail
 psycopg2-binary
-PyMySQL
+PyMySQL>=1.1.1

docs/janssen-server/reference/kubernetes/README.md

@@ -18,7 +18,7 @@ This Reference guide helps you learn about the components and architecture of Ja
 - **config-api**: The API to configure the auth-server and other components is consolidated in this component. This service should not be Internet-facing.
 - **Fido**: Provides the server side endpoints to enroll and validate devices that use FIDO. It provides both FIDO U2F (register, authenticate) and FIDO 2 (attestation, assertion) endpoints. This service must be internet facing.
 - **SCIM**: a JSON/REST API to manage user data. Use it to add, edit and update user information. This service should not be Internet facing.
-- **Casa**: self-service web portal for end-users to manage authentication and authorization preferences for their account in a Gluu Server.
+- **Casa**: self-service web portal for end-users to manage authentication and authorization preferences for their account in a Jannsen Server.
 
 ## Architectural diagram of Janssen
 

docs/requirements.txt

@@ -14,34 +14,34 @@ mkdocs-include-markdown-plugin==6.0.5 --hash=sha256:db41aa1937a618afa3497616f457
 click==8.1.3 --hash=sha256:bb4d8133cb15a609f44e8213d9b391b0809795062913b383c62be0ee95b1db48
 ghp-import==2.1.0 --hash=sha256:8337dd7b50877f163d4c0289bc1f1c7f127550241988d568c1db512c4324a619
 importlib-metadata==4.12.0 --hash=sha256:7401a975809ea1fdc658c3aa4f78cc2195a0e019c5cbc4c06122884e9ae80c23
-Jinja2==3.1.2 --hash=sha256:6088930bfe239f0e6710546ab9c19c9ef35e29792895fed6e6e31a023a182a61
+Jinja2==3.1.5 --hash=sha256:8fefff8dc3034e27bb80d67c671eb8a9bc424c0ef4c0826edbff304cceff43bb
 Markdown==3.3.7 --hash=sha256:f5da449a6e1c989a4cea2631aa8ee67caa5a2ef855d551c88f9e309f4634c621
 MarkupSafe==2.1.1 --hash=sha256:10c1bfff05d95783da83491be968e8fe789263689c02724e0c691933c52994f5 --hash=sha256:7f91197cc9e48f989d12e4e6fbc46495c446636dfc81b9ccf50bb0ec74b91d4b
 mergedeep==1.3.4 --hash=sha256:70775750742b25c0d8f36c55aed03d24c3384d17c951b3175d898bd778ef0307
 packaging==21.3 --hash=sha256:ef103e05f519cdc783ae24ea4e2e0f508a9c99b2d4969652eed6a2e1ea5bd522
-Pygments==2.13.0 --hash=sha256:56a8508ae95f98e2b9bdf93a6be5ae3f7d8af858b43e02c5a2ff083726be40c1 --hash=sha256:f643f331ab57ba3c9d89212ee4a2dabc6e94f117cf4eefde99a0574720d14c42
-pymdown-extensions==9.5 --hash=sha256:ec141c0f4983755349f0c8710416348d1a13753976c028186ed14f190c8061c4
+Pygments==2.15.1 --hash=sha256:8ace4d3c1dd481894b2005f560ead0f9f19ee64fe983366be1a21e171d12775c
+pymdown-extensions==10.0 --hash=sha256:9a77955e63528c2ee98073a1fb3207c1a45607bc74a34ef21acd098f46c3aa8a
 pyparsing==3.0.9 --hash=sha256:5026bae9a10eeaefb61dab2f09052b9f4307d44aee4eda64b309723d8d206bbc
 python-dateutil==2.8.2 --hash=sha256:961d03dc3453ebbc59dbdea9e4e11c5651520a876d0f4db161e8674aae935da9
 PyYAML==6.0 --hash=sha256:f84fbc98b019fef2ee9a1cb3ce93e3187a6df0b2538a651bfb890254ba9f90b5 --hash=sha256:432557aa2c09802be39460360ddffd48156e30721f5e8d917f01d31694216782
 pyyaml_env_tag==0.1 --hash=sha256:af31106dec8a4d68c60207c1886031cbf839b68aa7abccdb19868200532c2069
 six==1.16.0 --hash=sha256:8abb2f1d86890a2dfb989f9a77cfcfd3e47c2a354b01111771326f8aa26e0254
 verspec==0.1.0 --hash=sha256:741877d5633cc9464c45a469ae2a31e801e6dbbaa85b9675d481cda100f11c31
 watchdog==2.1.9 --hash=sha256:4f4e1c4aa54fb86316a62a87b3378c025e228178d55481d30d857c6c438897d6
-zipp==3.8.1 --hash=sha256:47c40d7fe183a6f21403a199b3e4192cca5774656965b0a4988ad2f8feb5f009
+zipp==3.19.1 --hash=sha256:35427f6d5594f4acf82d25541438348c26736fa9b3afa2754bcd63cdb99d8e8f
 babel==2.10.3 --hash=sha256:ff56f4892c1c4bf0d814575ea23471c230d544203c7748e8c68f0089478d48eb
-GitPython==3.1.37 --hash=sha256:5f4c4187de49616d710a77e98ddf17b4782060a1788df441846bddefbb89ab33 --hash=sha256:f9b9ddc0761c125d5780eab2d64be4873fc6817c2899cbcb34b02344bdc7bc54
-requests==2.28.1 --hash=sha256:8fefa2a1a1365bf5520aac41836fbee479da67864514bdb821f31ce07ce65349
+GitPython==3.1.41 --hash=sha256:ed66e624884f76df22c8e16066d567aaa5a37d5b5fa19db2c6df6f7156db9048
+requests==2.32.2 --hash=sha256:dd951ff5ecf3e3b3aa26b40703ba77495dab41da839ae72ef3c8e5d8e2433289
 pytz==2022.2.1 --hash=sha256:220f481bdafa09c3955dfbdddb7b57780e9a94f5127e35456a48589b9e0c0197
 gitdb==4.0.9 --hash=sha256:8033ad4e853066ba6ca92050b9df2f89301b8fc8bf7e9324d412a63f8bf1a8fd
-idna==3.4 --hash=sha256:90b77e79eaa3eba6de819a0c442c0b4ceefc341a7a2ab77d7562bf49f425c5c2
-certifi==2022.12.7 --hash=sha256:35824b4c3a97115964b408844d64aa14db1cc518f6562e8d7261699d1350a9e3 --hash=sha256:4ad3232f5e926d6718ec31cfc1fcadfde020920e278684144551c91769c7bc18
+idna==3.7 --hash=sha256:028ff3aadf0609c1fd278d8ea3089299412a7a8b9bd005dd08b9f8285bcb5cfc
+certifi==2024.07.04 --hash=sha256:5a1e7645bc0ec61a09e26c36f6106dd4cf40c6db3a1fb6352b0244e7fb057c7b
 charset-normalizer==2.1.1 --hash=sha256:83e9a75d1911279afd89352c68b45348559d1fc0506b054b346651b5e7fee29f
-urllib3==1.26.12 --hash=sha256:b930dd878d5a8afb066a637fbb35144fe7901e3b209d1cd4f524bd0e9deee997
+urllib3==1.26.19 --hash=sha256:3e3d753a8618b86d7de333b4223005f68720bcd6a7d2bcb9fbd2229ec7c1e429
 beautifulsoup4==4.11.1 --hash=sha256:58d5c3d29f5a36ffeb94f02f0d786cd53014cf9b3b3951d42e0080d8a9498d30
 soupsieve==2.3.2.post1 --hash=sha256:3b2503d3c7084a42b1ebd08116e5f81aadfaea95863628c80a3b774a11b7c759
 smmap==5.0.0 --hash=sha256:2aba19d6a040e78d8b09de5c57e96207b09ed71d8e55ce0959eeee6c8e190d94
 lxml==4.9.1 --hash=sha256:e5f66bdf0976ec667fc4594d2812a00b07ed14d1b44259d19a41ae3fff99f2b8 --hash=sha256:f1be258c4d3dc609e654a1dc59d37b17d7fef05df912c01fc2e15eb43a9735f3
-setuptools==65.6.3 --hash=sha256:57f6f22bde4e042978bcd50176fdb381d7c21a9efa4041202288d3737a0c6a54 # not directly required, pinned by Snyk to avoid a vulnerability
+setuptools==70.0.0 --hash=sha256:f211a66637b8fa059bb28183da127d4e86396c991a942b028c6650d4319c3fd0 # not directly required, pinned by Snyk to avoid a vulnerability
 bracex==2.4 --hash=sha256:efdc71eff95eaff5e0f8cfebe7d01adf2c8637c8c92edaf63ef348c241a82418
 wcmatch==8.5.2 --hash=sha256:17d3ad3758f9d0b5b4dedc770b65420d4dac62e680229c287bf24c9db856a478

jans-linux-setup/jans_setup/app_info.json

@@ -12,7 +12,7 @@
   "PROMPT_TOOLKIT": "https://github.com/prompt-toolkit/python-prompt-toolkit/archive/refs/tags/3.0.33.zip",
   "WCWIDTH": "https://github.com/jquast/wcwidth/archive/refs/tags/0.2.5.zip",
   "PYGMENTS": "https://github.com/pygments/pygments/archive/refs/tags/2.13.0.zip",
-  "PYMYSQL": "https://github.com/PyMySQL/PyMySQL/archive/refs/tags/v1.0.3.zip",
+  "PYMYSQL": "https://github.com/PyMySQL/PyMySQL/archive/refs/tags/v1.1.1.zip",
   "REQUESTS_TOOLBELT": "https://github.com/requests/toolbelt/archive/refs/tags/1.0.0.zip",
   "CRYPTOGRAPHY": "https://files.pythonhosted.org/packages/20/8b/66600f5851ec7893ace9b74445d7eaf3499571b347e339d18c76c876b0f9/cryptography-37.0.4-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl",
   "TWILIO_MAVEN": "https://repo1.maven.org/maven2/com/twilio/sdk/twilio/",

jans-linux-setup/requirements.txt

@@ -1,7 +1,6 @@
-setuptools>=59.6.0
+setuptools>=70.0.0
 pyasn1==0.4.8
 ruamel.yaml>=0.16.5
 sqlalchemy==1.3.23
 ldap3
-PyMySQL
-pycrypto
+PyMySQL>=1.1.1

jans-linux-setup/setup.py

@@ -42,7 +42,6 @@ def find_version(*file_paths):
         "sqlalchemy==1.3.23",
         "ldap3",
         "PyMySQL",
-        "pycrypto",
         "PyJWT>=2.3.0",
     ],
     classifiers=[