Adjust OWSAP suppression configuration (#2277)

Author: acoburn

build-tools/owasp/suppressions.xml

@@ -31,28 +31,19 @@
   </suppress>
 
   <!-- Suppressed vulnerabilities. These need monthly review. -->
-  <suppress until="2025-08-10Z">
-    <notes><![CDATA[
-        This vulnerability affects a transitive dependency of the test module but is not relevant
-        for how it is used in the context of the Java Client Libraries.
-    ]]></notes>
-    <packageUrl regex="true">^pkg:maven/net\.minidev/json-smart@.*$</packageUrl>
-    <vulnerabilityName>CVE-2024-57699</vulnerabilityName>
-  </suppress>
-  <suppress until="2025-08-10Z">
+  <suppress>
     <notes><![CDATA[
-        This vulnerability affects a transitive dependency of the test module but is not relevant
-        for how it is used in the context of the Java Client Libraries.
+        This vulnerability relates to database files used by the Fuseki server, which is not used in the Java Client libraries.
     ]]></notes>
-    <packageUrl regex="true">^pkg:maven/org\.eclipse\.jetty\.http2/http2-common@.*$</packageUrl>
-    <cve>CVE-2024-6763</cve>
+    <packageUrl regex="true">^pkg:maven/org\.apache\.jena/jena-.*@.*$</packageUrl>
+    <cve>CVE-2025-49656</cve>
   </suppress>
-  <suppress until="2025-08-10Z">
+  <suppress>
     <notes><![CDATA[
-        This vulnerability affects a transitive dependency of the test module but is not relevant
-        for how it is used in the context of the Java Client Libraries.
+        This vulnerability relates to file access paths when using Fuseki, which is not used in the Java Client libraries.
     ]]></notes>
-    <packageUrl regex="true">^pkg:maven/org\.eclipse\.jetty\.http2/http2-common@.*$</packageUrl>
-    <cve>CVE-2025-1948</cve>
+    <packageUrl regex="true">^pkg:maven/org\.apache\.jena/jena-.*@.*$</packageUrl>
+    <cve>CVE-2025-50151</cve>
   </suppress>
+
 </suppressions>

integration/base/pom.xml

@@ -107,10 +107,15 @@
         </dependency>
         <dependency>
             <groupId>org.wiremock</groupId>
-            <artifactId>wiremock</artifactId>
+            <artifactId>wiremock-standalone</artifactId>
             <version>${wiremock.version}</version>
             <scope>provided</scope>
         </dependency>
+        <dependency>
+            <groupId>org.hamcrest</groupId>
+            <artifactId>hamcrest</artifactId>
+            <version>${hamcrest.version}</version>
+        </dependency>
 
         <!-- test dependencies -->
         <dependency>

performance/base/pom.xml

@@ -107,7 +107,7 @@
         </dependency>
         <dependency>
             <groupId>org.wiremock</groupId>
-            <artifactId>wiremock</artifactId>
+            <artifactId>wiremock-standalone</artifactId>
             <version>${wiremock.version}</version>
             <scope>provided</scope>
         </dependency>

pom.xml

@@ -79,6 +79,7 @@
     <smallrye.config.version>3.13.2</smallrye.config.version>
     <yasson.version>3.0.4</yasson.version>
     <wiremock.version>3.13.1</wiremock.version>
+    <hamcrest.version>3.0</hamcrest.version>
 
     <!-- disable by default (enabled by profile in CI) -->
     <dependency-check.skip>true</dependency-check.skip>

spring/pom.xml

@@ -107,7 +107,7 @@
         <jdk>[17,)</jdk>
       </activation>
       <properties>
-        <spring.security.version>6.5.1</spring.security.version>
+        <spring.security.version>6.5.3</spring.security.version>
       </properties>
     </profile>
   </profiles>

test/pom.xml

@@ -39,7 +39,7 @@
     </dependency>
     <dependency>
       <groupId>org.wiremock</groupId>
-      <artifactId>wiremock</artifactId>
+      <artifactId>wiremock-standalone</artifactId>
       <version>${wiremock.version}</version>
       <scope>provided</scope>
     </dependency>