-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathbuild.sbt
79 lines (63 loc) · 3.25 KB
/
build.sbt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
name := "support-admin-console"
version := "1.0-SNAPSHOT"
scalaVersion := "2.13.10"
val circeVersion = "0.14.1"
val awsVersion = "2.20.162"
val zioVersion = "1.0.14"
lazy val root = (project in file(".")).enablePlugins(PlayScala, RiffRaffArtifact, SbtWeb, JDebPackaging, SystemdPlugin,BuildInfoPlugin)
.settings(
buildInfoKeys := BuildInfoSettings.buildInfoKeys,
buildInfoPackage := "app",
)
asciiGraphWidth := 999999999 // to ensure Snyk can read the the deeeeep dependency tree
libraryDependencies ++= Seq(
"com.typesafe.scala-logging" %% "scala-logging" % "3.9.5",
"com.gu.play-googleauth" %% "play-v30" % "19.0.0",
"com.gu" %% "simple-configuration-ssm" % "1.5.7",
"software.amazon.awssdk" % "s3" % awsVersion,
"software.amazon.awssdk" % "dynamodb" % awsVersion,
"software.amazon.awssdk" % "athena" % awsVersion,
"io.circe" %% "circe-core" % circeVersion,
"io.circe" %% "circe-generic" % circeVersion,
"io.circe" %% "circe-parser" % circeVersion,
"io.circe" %% "circe-generic-extras" % circeVersion,
"com.dripower" %% "play-circe" % "3014.1",
"com.beachape" %% "enumeratum" % "1.7.0",
"com.beachape" %% "enumeratum-circe" % "1.7.0",
ws,
"dev.zio" %% "zio" % zioVersion,
"dev.zio" %% "zio-streams" % zioVersion,
"org.scalatest" %% "scalatest" % "3.2.19" % "test",
"org.gnieh" %% "diffson-circe" % "4.1.1" % "test",
)
dependencyOverrides ++= List(
// Play still uses an old version of jackson-core which has a vulnerability - https://security.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-7569538
"com.fasterxml.jackson.core" % "jackson-core" % "2.17.2",
// The version of netty-handler currently used by athena has a vulnerability - https://security.snyk.io/vuln/SNYK-JAVA-IONETTY-5725787
"io.netty" % "netty-handler" % "4.1.100.Final",
"io.netty" % "netty-codec-http2" % "4.1.100.Final",
// Related to Play 3.0.2-6 currently brings in a vulnerable version of commons-io
"commons-io" % "commons-io" % "2.14.0" % Test
)
excludeDependencies ++= Seq(
// Exclude htmlunit due to a vulnerability. Brought in via scalatest but we don't need it.
// The vulnerability is fixed in htmlunit v3 onwards, but the lib was renamed so we cannot force a newer version
// by specifying it in the dependencies.
ExclusionRule("net.sourceforge.htmlunit", "htmlunit"),
)
dynamoDBLocalPort := 8083
startDynamoDBLocal := {startDynamoDBLocal.dependsOn(Test / compile).value}
Test / testQuick := {(Test / testQuick).dependsOn(startDynamoDBLocal).evaluated}
Test / test := {(Test / test).dependsOn(startDynamoDBLocal).value}
Test / testOptions += {dynamoDBLocalTestCleanup.value}
sources in(Compile, doc) := Seq.empty
publishArtifact in(Compile, packageDoc) := false
pipelineStages := Seq(digest)
riffRaffPackageType := (packageBin in Debian).value
riffRaffManifestProjectName := "support:admin-console"
riffRaffPackageName := "admin-console"
riffRaffUploadArtifactBucket := Option("riffraff-artifact")
riffRaffUploadManifestBucket := Option("riffraff-builds")
riffRaffArtifactResources += (file("cdk/cdk.out/AdminConsole-PROD.template.json"), "cfn/AdminConsole-PROD.template.json")
riffRaffArtifactResources += (file("cdk/cdk.out/AdminConsole-CODE.template.json"), "cfn/AdminConsole-CODE.template.json")
javaOptions in run ++= Seq("-Xms2G", "-Xmx2G", "-Xss4M")