From 3ca70ba620c91082afed3a6bd614f7e6bbd210bd Mon Sep 17 00:00:00 2001
From: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
Date: Mon, 10 Feb 2020 19:57:56 -0500
Subject: [PATCH] Use HTTPS instead of HTTP to resolve dependencies

This fixes a security vulnerability in this project where the `pom.xml`
files were configuring Maven to resolve dependencies over HTTP instead of
HTTPS.

Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
---
 client/pom.xml                                    | 2 +-
 plugins/network-elements/juniper-contrail/pom.xml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/client/pom.xml b/client/pom.xml
index 3f1e0763d05c..044c24599ddf 100644
--- a/client/pom.xml
+++ b/client/pom.xml
@@ -30,7 +30,7 @@
     <repositories>
         <repository>
             <id>juniper-contrail</id>
-            <url>http://juniper.github.io/contrail-maven/snapshots</url>
+            <url>https://juniper.github.io/contrail-maven/snapshots</url>
         </repository>
     </repositories>
     <dependencies>
diff --git a/plugins/network-elements/juniper-contrail/pom.xml b/plugins/network-elements/juniper-contrail/pom.xml
index a3b294a8ce8d..7f1dd58fc772 100644
--- a/plugins/network-elements/juniper-contrail/pom.xml
+++ b/plugins/network-elements/juniper-contrail/pom.xml
@@ -30,7 +30,7 @@
     <repositories>
         <repository>
             <id>juniper-contrail</id>
-            <url>http://juniper.github.io/contrail-maven/snapshots</url>
+            <url>https://juniper.github.io/contrail-maven/snapshots</url>
         </repository>
     </repositories>
     <dependencies>