Update dependencies (#650)

- Java gRPC and Maven plugin
- Node test dependencies

Also:

- Remove unused import in test code.
- Remove a redundant vulnerability scan suppression.

Signed-off-by: Mark S. Lewis <Mark.S.Lewis@outlook.com>

java/dependency-suppression.xml

@@ -16,13 +16,4 @@
         <packageUrl regex="true">^pkg:maven/org\.hyperledger\.fabric/fabric\-protos@.*$</packageUrl>
         <cve>CVE-2022-36023</cve>
     </suppress>
-    <suppress>
-        <notes><![CDATA[
-        file name: guava-31.1-android.jar
-        The offending com.google.common.io.Files.createTempDir() method is deprecated and not used.
-        NIST classify this CVE with a CVSS 3.x score of 3.3 (Low).
-        ]]></notes>
-        <packageUrl regex="true">^pkg:maven/com\.google\.guava/guava@.*$</packageUrl>
-        <vulnerabilityName>CVE-2020-8908</vulnerabilityName>
-    </suppress>
 </suppressions>

java/pom.xml

@@ -38,7 +38,7 @@
     <properties>
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
         <javaVersion>8</javaVersion>
-        <grpcVersion>1.58.0</grpcVersion>
+        <grpcVersion>1.59.0</grpcVersion>
         <bouncyCastleVersion>1.76</bouncyCastleVersion>
         <skipUnitTests>${skipTests}</skipUnitTests>
     </properties>
@@ -380,7 +380,7 @@
                     <plugin>
                         <groupId>org.owasp</groupId>
                         <artifactId>dependency-check-maven</artifactId>
-                        <version>8.4.0</version>
+                        <version>8.4.2</version>
                         <configuration>
                             <skipProvidedScope>true</skipProvidedScope>
                             <skipTestScope>true</skipTestScope>

java/src/test/java/org/hyperledger/fabric/client/identity/X509Credentials.java

@@ -32,7 +32,6 @@
 import java.security.Provider;
 import java.security.cert.CertificateException;
 import java.security.cert.X509Certificate;
-import java.security.spec.AlgorithmParameterSpec;
 import java.security.spec.ECGenParameterSpec;
 import java.util.Date;
 import java.util.Locale;

node/package.json

@@ -50,8 +50,8 @@
         "@types/node": "^18.18.6",
         "@typescript-eslint/eslint-plugin": "^6.8.0",
         "@typescript-eslint/parser": "^6.8.0",
-        "eslint": "^8.51.0",
-        "eslint-plugin-jest": "^27.4.2",
+        "eslint": "^8.52.0",
+        "eslint-plugin-jest": "^27.4.3",
         "eslint-plugin-tsdoc": "^0.2.17",
         "jest": "^29.7.0",
         "npm-run-all": "^4.1.5",

scenario/node/package.json

@@ -23,13 +23,13 @@
         "@hyperledger/fabric-protos": "^0.2.0"
     },
     "devDependencies": {
-        "@cucumber/cucumber": "^9.5.1",
+        "@cucumber/cucumber": "^10.0.1",
         "@tsconfig/node18": "^18.2.2",
         "@types/node": "^18.18.6",
         "@typescript-eslint/eslint-plugin": "^6.8.0",
         "@typescript-eslint/parser": "^6.8.0",
         "cucumber-console-formatter": "^1.0.0",
-        "eslint": "^8.51.0",
+        "eslint": "^8.52.0",
         "expect": "^29.7.0",
         "npm-run-all": "^4.1.5",
         "typescript": "~5.2.2"