From d46f428757bf4ab910c00cf5f5fd0fc67c748de0 Mon Sep 17 00:00:00 2001
From: Jonathan Leitschuh <jonathan.leitschuh@gmail.com>
Date: Wed, 12 Feb 2020 08:27:26 -0500
Subject: [PATCH] maven: Use HTTPS instead of HTTP to resolve dependencies
 (#3877)

This fixes a security vulnerability in this project where the `pom.xml`
files were configuring Maven to resolve dependencies over HTTP instead of
HTTPS.

Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
---
 client/pom.xml                                    | 2 +-
 plugins/network-elements/juniper-contrail/pom.xml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/client/pom.xml b/client/pom.xml
index 5387af2689a..507101bf631 100644
--- a/client/pom.xml
+++ b/client/pom.xml
@@ -30,7 +30,7 @@
     <repositories>
         <repository>
             <id>juniper-contrail</id>
-            <url>http://juniper.github.io/contrail-maven/snapshots</url>
+            <url>https://juniper.github.io/contrail-maven/snapshots</url>
         </repository>
     </repositories>
     <dependencies>
diff --git a/plugins/network-elements/juniper-contrail/pom.xml b/plugins/network-elements/juniper-contrail/pom.xml
index a3b294a8ce8..7f1dd58fc77 100644
--- a/plugins/network-elements/juniper-contrail/pom.xml
+++ b/plugins/network-elements/juniper-contrail/pom.xml
@@ -30,7 +30,7 @@
     <repositories>
         <repository>
             <id>juniper-contrail</id>
-            <url>http://juniper.github.io/contrail-maven/snapshots</url>
+            <url>https://juniper.github.io/contrail-maven/snapshots</url>
         </repository>
     </repositories>
     <dependencies>