upgrade tomcat/jackson-core for vulns

Author: jhua-vmware

.github/workflows/main.yml

@@ -84,7 +84,7 @@ jobs:
           java-version: '17'
       - name: Smoke Test
         run: |
-          git clone --branch=devops https://github.com/vmware/singleton.git devops
+          git clone --branch=devops https://github.com/vmware/singleton.git jhua/devops
           cd $GITHUB_WORKSPACE/g11n-ws && ./gradlew build -x test
           cp $GITHUB_WORKSPACE/devops/deploy/i18n-service/Dockerfile $GITHUB_WORKSPACE/publish/
           cd $GITHUB_WORKSPACE/publish && ls
@@ -125,7 +125,7 @@ jobs:
           python-version: '3.10'
       - name: Performance Test
         run: |
-          git clone --branch=devops https://github.com/vmware/singleton.git devops
+          git clone --branch=devops https://github.com/vmware/singleton.git jhua/devops
           cd $GITHUB_WORKSPACE/g11n-ws && ./gradlew build -x test
           cp $GITHUB_WORKSPACE/devops/performancetest/Dockerfile $GITHUB_WORKSPACE/publish/
           cd $GITHUB_WORKSPACE/publish && ls

g11n-ws/build.gradle

@@ -1,4 +1,4 @@
-//Copyright 2019-2025 VMware, Inc.
+//Copyright 2019-2026 VMware, Inc.
 //SPDX-License-Identifier: EPL-2.0
 
 buildscript {

g11n-ws/vip-common/src/main/java/com/vmware/vip/common/cache/SingletonCacheImpl.java

@@ -1,5 +1,5 @@
 /*
- * Copyright 2019-2023 VMware, Inc.
+ * Copyright 2019-2026 VMware, Inc.
  * SPDX-License-Identifier: EPL-2.0
  */
 package com.vmware.vip.common.cache;
@@ -12,11 +12,14 @@
 import org.ehcache.config.builders.CacheManagerBuilder;
 import org.ehcache.xml.XmlConfiguration;
 
+import java.net.URL;
 import java.util.ArrayList;
 import java.util.List;
 
 public class SingletonCacheImpl implements SingletonCache{
 
+    private static final String EHCACHE_CONFIG_RESOURCE = "ehcache3.xml";
+
     private boolean cacheEnable;
 
     private CacheManager manager;
@@ -26,10 +29,34 @@ public class SingletonCacheImpl implements SingletonCache{
     public SingletonCacheImpl(boolean enable){
         this.cacheEnable = enable;
         if (this.cacheEnable){
-            Configuration xmlConf = new XmlConfiguration(SingletonCacheImpl.class.getResource("/ehcache3.xml"));
-            this.manager= CacheManagerBuilder.newCacheManager(xmlConf);
-            this.manager.init();
+            try {
+                URL configUrl = getEhcacheConfigUrl();
+                if (configUrl == null) {
+                    throw new IllegalStateException(
+                        "Ehcache config resource not found: " + EHCACHE_CONFIG_RESOURCE
+                            + ". Ensure it is on the classpath (e.g. in src/main/resources).");
+                }
+                Configuration xmlConf = new XmlConfiguration(configUrl);
+                this.manager = CacheManagerBuilder.newCacheManager(xmlConf);
+                this.manager.init();
+            } catch (Exception e) {
+                String msg = e.getMessage() != null ? e.getMessage() : e.getClass().getName();
+                throw new IllegalStateException(
+                    "Failed to initialize singleton cache: " + msg, e);
+            }
+        }
+    }
+
+    /**
+     * Resolve ehcache3.xml from the classpath. Tries thread context class loader first
+     * (for Spring Boot fat jars), then the class loader of this class.
+     */
+    private static URL getEhcacheConfigUrl() {
+        URL url = Thread.currentThread().getContextClassLoader().getResource(EHCACHE_CONFIG_RESOURCE);
+        if (url == null) {
+            url = SingletonCacheImpl.class.getResource("/" + EHCACHE_CONFIG_RESOURCE);
         }
+        return url;
     }
 
     private <K, V> Cache<K, V> getCache(CacheName cachename, Class<K> keyType, Class<V> valueType) throws VIPCacheException{