Login/Register
What is the purpose of "spring-boot-starter-integration" dependency?
Asked Answered
Solved javaspringspring-bootspring-integrationspring-boot-starter
P

1

5

I am refactoring a legacy Spring boot project which implements Spring integration. In one of the module, I have removed the following dependency to fix the CVE-2019-3772 vulnerability. The projects still compile and run without any failures. I have checked the source code and none of the imports uses this dependency.

So, what is the use of this dependency? 

<dependency>
    <groupId>org.springframework.boot</groupId>
    <artifactId>spring-boot-starter-integration</artifactId>
</dependency>

Still, the module uses the following integration dependencies. 

<dependency>
    <groupId>org.springframework.integration</groupId>
    <artifactId>spring-integration-security</artifactId>
</dependency>
<dependency>
    <groupId>org.springframework.integration</groupId>
    <artifactId>spring-integration-http</artifactId>
</dependency>
Pfaff answered 15/9, 2019 at 19:54 Comment(0)
L
6

The starter simply pulls in spring-integraition-core and spring-aop, which are also transitive dependencies of your other spring integration deps; so it is redundant.

Leech answered 15/9, 2019 at 20:21 Comment(0)

© 2022 - 2024 — McMap. All rights reserved.