Resolving vulnerablities by upgrading versions and excluding dependencies

Excluding dependencies vulnerablities of spring-core, spring-security core, 
Bump up versions of netty, log4j, plexus

Author: rpraveen-vmware

pom.xml

@@ -49,6 +49,7 @@
 		<spring.boot.version>2.2.13.RELEASE</spring.boot.version>
 		<spring.cloud.version>2.0.2.RELEASE</spring.cloud.version>
 		<springframework.version>5.1.20.RELEASE</springframework.version>
+		<kotlin-stdlib.version>1.6.0</kotlin-stdlib.version>
 		<springframework-plugin.version>1.2.0.RELEASE</springframework-plugin.version>
 		<swagger-version>2.9.2</swagger-version>
 		<spring.hateoas.version>0.25.1.RELEASE</spring.hateoas.version>
@@ -94,10 +95,10 @@
 		<hazelcast-kubernetes.version>1.3.1</hazelcast-kubernetes.version>
 		<org.json.version>20180130</org.json.version>
 		<net.jpountz.lz4.version>1.3.0</net.jpountz.lz4.version>
-		<log4j.version>2.17.0</log4j.version>
+		<log4j.version>2.17.1</log4j.version>
 		<avro-version>1.10.2</avro-version>
 		<asynchttpclient.version>2.12.3</asynchttpclient.version>
-		<netty.version>4.1.68.Final</netty.version>
+		<netty.version>4.1.86.Final</netty.version>
 		<tomcat.version>9.0.54</tomcat.version>
 		<netty-reactive-streams-version>2.0.5</netty-reactive-streams-version>
 		<aws-sdk.version>1.11.579</aws-sdk.version>
@@ -136,6 +137,12 @@
 				<groupId>org.springframework</groupId>
 				<artifactId>spring-core</artifactId>
 				<version>${springframework.version}</version>
+				<exclusions>
+				   <exclusion>
+				      <groupId>org.jetbrains.kotlin</groupId>
+                                      <artifactId>kotlin-stdlib</artifactId>
+				   </exclusion>
+				</exclusions>
 			</dependency>
 			<dependency>
 				<groupId>org.springframework</groupId>
@@ -147,6 +154,11 @@
 				<artifactId>spring-plugin-core</artifactId>
 				<version>${springframework-plugin.version}</version>
 			</dependency>
+			<dependency>
+                               <groupId>org.jetbrains.kotlin</groupId>
+                               <artifactId>kotlin-stdlib</artifactId>
+                               <version>${kotlin-stdlib.version}</version>
+                        </dependency>
 			<dependency>
 				<groupId>org.springframework.plugin</groupId>
 				<artifactId>spring-plugin-metadata</artifactId>
@@ -307,6 +319,24 @@
 				<groupId>org.springframework.security</groupId>
 				<artifactId>spring-security-core</artifactId>
 				<version>${spring.security.core.version}</version>
+				<exclusions>
+				    <exclusion>
+				       <groupId>com.fasterxml.jackson.core</groupId>
+                                       <artifactId>jackson-databind</artifactId>
+				    </exclusion>
+				    <exclusion>
+				      <groupId>org.springframework</groupId>
+                                      <artifactId>spring-beans</artifactId>
+				    </exclusion>
+				    <exclusion>
+				      <groupId>org.springframework</groupId>
+                                      <artifactId>spring-core</artifactId>
+				   </exclusion>
+				    <exclusion>
+				      <groupId>org.springframework</groupId>
+                                      <artifactId>spring-expression</artifactId>
+				    </exclusion>
+				</exclusions>
 			</dependency>
 			<dependency>
 				<groupId>org.springframework.security</groupId>