Revert that because of a CVE

bowbahdoe · Feb 10, 2022 · e956d3e · e956d3e
1 parent 2dcad17
commit e956d3e
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 12 deletions.
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -24,5 +24,6 @@ jobs:
         env:
           MAVEN_USERNAME: ${{ secrets.OSSRH_USERNAME }}
           MAVEN_PASSWORD: ${{ secrets.OSSRH_TOKEN }}
+          MAVEN_OPTS: "--add-opens=java.base/java.util=ALL-UNNAMED --add-opens=java.base/java.lang.reflect=ALL-UNNAMED --add-opens=java.base/java.text=ALL-UNNAMED --add-opens=java.desktop/java.awt.font=ALL-UNNAMED"
         run: |
           mvn --no-transfer-progress --batch-mode -Dgpg.passphrase='${{ secrets.OSSRH_GPG_SECRET_KEY_PASSWORD }}' clean deploy
diff --git a/pom.xml b/pom.xml
@@ -114,18 +114,6 @@
           <nexusUrl>https://s01.oss.sonatype.org/</nexusUrl>
           <autoReleaseAfterClose>true</autoReleaseAfterClose>
         </configuration>
-        <dependencies>
-          <!--
-            TODO:
-              Remove after OSSRH-66257, NEXUS-26993 are fixed,
-              possibly via https://github.com/sonatype/nexus-maven-plugins/pull/91
-          -->
-          <dependency>
-            <groupId>com.thoughtworks.xstream</groupId>
-            <artifactId>xstream</artifactId>
-            <version>1.4.15</version>
-          </dependency>
-        </dependencies>
       </plugin>
 
       <plugin>