commit bf99f3fb60b403d3e980678838519b82cb3acbae
author P. Ottlinger <ottlinger@users.noreply.github.com> Mon Feb 25 12:38:49 2019 +0100
committer GitHub <noreply@github.com> Mon Feb 25 12:38:49 2019 +0100
tree 901e7765767a46647bbe3a45f19ad1e982ece879
parent e212349b720a97b4add9afbc321a9be7ae4ab6ab

[Security] Do not use http to transfer artifacts

Following a mail thread via security team: Fixes:
CWE-829: Inclusion of Functionality from Untrusted Control Sphere
CWE-494: Download of Code Without Integrity Check

ui/base/pom.xml

diff --git a/ui/base/pom.xml b/ui/base/pom.xml
index 3807cc5..d6a4f47 100644
--- a/ui/base/pom.xml
+++ b/ui/base/pom.xml
@@ -143,7 +143,7 @@
     <repositories>
         <repository>
             <id>vaadin-addons</id>
-            <url>http://maven.vaadin.com/vaadin-addons</url>
+            <url>https://maven.vaadin.com/vaadin-addons</url>
         </repository>
         <repository>
             <id>vaadin-snapshots</id>