From e6fc58e1951a2bb2d887607b098e0b44d427cd27 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Sat, 6 Jun 2026 09:33:35 +0000
Subject: [PATCH 1/3] Initial plan
From 904439b029fbfde7c40f43e4cfd8921a078550f1 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Sat, 6 Jun 2026 09:34:58 +0000
Subject: [PATCH 2/3] fix: replace servicemix rhino bundle with
org.mozilla:rhino:1.7.15.1 (CVE-2025-66453)
---
openam-scripting/pom.xml | 4 ++--
pom.xml | 6 +++---
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/openam-scripting/pom.xml b/openam-scripting/pom.xml
index c251a5dce5..6e7db048ad 100644
--- a/openam-scripting/pom.xml
+++ b/openam-scripting/pom.xml
@@ -72,8 +72,8 @@
- org.apache.servicemix.bundles
- org.apache.servicemix.bundles.rhino
+ org.mozilla
+ rhino
diff --git a/pom.xml b/pom.xml
index 7be9c91494..e8a391a8b8 100644
--- a/pom.xml
+++ b/pom.xml
@@ -107,7 +107,7 @@
2.23.4
1.1.5.2
20020414
- 1.7.15_1
+ 1.7.15.1
2.0.1
2.0.1
3.0.0
@@ -1061,8 +1061,8 @@
- org.apache.servicemix.bundles
- org.apache.servicemix.bundles.rhino
+ org.mozilla
+ rhino
${rhino.version}
From f0fa5977fe2a7fc671d401431c59664544565f2f Mon Sep 17 00:00:00 2001
From: Valery Kharseko
Date: Tue, 9 Jun 2026 15:45:01 +0300
Subject: [PATCH 3/3] Remove Rhino dependency from pom.xml
Removed dependency for Mozilla Rhino Javascript engine.
---
pom.xml | 7 -------
1 file changed, 7 deletions(-)
diff --git a/pom.xml b/pom.xml
index e8a391a8b8..e3e2912b98 100644
--- a/pom.xml
+++ b/pom.xml
@@ -107,7 +107,6 @@
2.23.4
1.1.5.2
20020414
- 1.7.15.1
2.0.1
2.0.1
3.0.0
@@ -1059,12 +1058,6 @@
${commons-text.version}
-
-
- org.mozilla
- rhino
- ${rhino.version}
-
org.codehaus.groovy