search

camunda / camunda-bpm-platform

Flexible framework for workflow and decision automation with BPMN and DMN. Integration with Quarkus, Spring, Spring Boot, CDI.
https://camunda.com/
Apache License 2.0
4.03k stars 1.53k forks source link

Remove org.json:json from internal-dependencies/pom.xml #4477

Closed venetrius closed 6 days ago

venetrius commented 6 days ago

Acceptance Criteria (Required on creation)

org.json:json is part of the dependencyManagement section in internal-dependencies/pom.xml , but other then that the library is not used in Camunda 7 Platform.

https://github.com/camunda/camunda-bpm-platform/blob/3ce76b1131944a8f85bac8b3f223e15296b1d0a6/internal-dependencies/pom.xml#L165

Removing it makes our dependency management cleaner and we would get less false positive security concerns.

Hints

Links

venetrius commented 6 days ago

QA note: note a functional change.