CVE-2016-3093 due to inefficient method reference caching. The project pulled in OGNL 2.6.9 transitively via click-nodeps#1003

Open

Copilot wants to merge 41 commits intomasterfrom

copilot/update-ognl-dependency-to-3-0-21

Commits on Apr 16, 2026

Update selenium to 4.43.0 & testcontainers to 1.21.4
maximthomas
committed
Make IT_SetupWithOpenDJ more stable
maximthomas
committed
Make IT_SetupWithOpenDJ more stable
maximthomas
committed
Initial plan
Copilot
authored
Fix CVE-2016-3093: upgrade OGNL from 2.6.9 to 3.0.21

Copilot
and
vharseko
authored
Initial plan
Copilot
authored
Make IT_SetupWithOpenDJ more stable
maximthomas
committed
Upgrade PowerMock from 1.7.4 to 2.0.9, replace Matchers with ArgumentMatchers

Copilot
and
vharseko
authored
Fix CLILicensePresenterTest: replace mockito-all with mockito-core in license-manager-cli pom

Copilot
and
vharseko
authored
Set debug level to 'warning' in integration tests
maximthomas
committed
Fix ExternalLdapConfigTest: update verifyStatic calls to PowerMock 2.x API

Copilot
and
vharseko
authored
Fix openam-core: replace mockito-all with mockito-core for PowerMock 2.x compatibility

Copilot
and
vharseko
authored
fix: fix 46 test failures caused by Mockito 2.x null-matching behavior changes

Copilot
and
vharseko
authored
fix: fix remaining 7 test failures - authenticationEvent nullable stub and UpdateTask static cache pollution

Copilot
and
vharseko
authored
fix: replace mockito-all with mockito-core in openam-rest pom.xml

Copilot
and
vharseko
authored
fix: fix Mockito 2.x null matching issues in openam-rest tests

Copilot
and
vharseko
authored
fix: replace mockito-all with mockito-core in openam-scripting pom

Copilot
and
vharseko
authored
fix: use nullable(String.class) in ScriptResourceTest for Mockito 2.x compatibility

Copilot
and
vharseko
authored
fix: replace mockito-all with mockito-core in openam-auth-common pom

Copilot
and
vharseko
authored
fix: use nullable() matcher for null CallbackHandler in verify calls

Copilot
and
vharseko
authored
fix: replace mockito-all with mockito-core in openam-auth-nt

Copilot
and
vharseko
authored
fix: replace mockito-all with mockito-core in all pom.xml files

Copilot
and
vharseko
authored
fix: fix IOFactoryTest for Mockito 2.x - stub contentConverter and fix anyString import

Copilot
and
vharseko
authored

Commits on Apr 17, 2026