From 89368017e386b850417cbce98e5c3de5feacd7a4 Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Sun, 5 Jan 2025 15:31:40 +0000
Subject: [PATCH] fix:
 sdk/spring/spring-cloud-azure-starter-active-directory-b2c/pom.xml to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8399269
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230365
---
 .../spring-cloud-azure-starter-active-directory-b2c/pom.xml     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/sdk/spring/spring-cloud-azure-starter-active-directory-b2c/pom.xml b/sdk/spring/spring-cloud-azure-starter-active-directory-b2c/pom.xml
index 4240cfb1f445e..2621bfd35d5a5 100644
--- a/sdk/spring/spring-cloud-azure-starter-active-directory-b2c/pom.xml
+++ b/sdk/spring/spring-cloud-azure-starter-active-directory-b2c/pom.xml
@@ -104,7 +104,7 @@
     <dependency>
       <groupId>org.springframework.security</groupId>
       <artifactId>spring-security-oauth2-jose</artifactId>
-      <version>6.3.1</version> <!-- {x-version-update;springboot3_org.springframework.security:spring-security-oauth2-jose;external_dependency} -->
+      <version>6.3.5</version> <!-- {x-version-update;springboot3_org.springframework.security:spring-security-oauth2-jose;external_dependency} -->
     </dependency>
     <dependency>
       <groupId>org.springframework.security</groupId>