From f5ae28f882cc68358a9a4c212056459b25a544f9 Mon Sep 17 00:00:00 2001
From: "octo-sts[bot]" <157150467+octo-sts@users.noreply.github.com>
Date: Sat, 6 Sep 2025 09:45:28 +0000
Subject: [PATCH] selenium/4.35.0-r0: fix GHSA-fghv-69vj-qj49
 <!--ci-cve-scan:must-fix: GHSA-fghv-69vj-qj49-->

---
 selenium.yaml              | 4 +++-
 selenium/pombump-deps.yaml | 4 ++++
 2 files changed, 7 insertions(+), 1 deletion(-)
 create mode 100644 selenium/pombump-deps.yaml

diff --git a/selenium.yaml b/selenium.yaml
index 6e8d3c632fb..4505e243208 100644
--- a/selenium.yaml
+++ b/selenium.yaml
@@ -1,7 +1,7 @@
 package:
   name: selenium
   version: "4.35.0"
-  epoch: 0
+  epoch: 1 # GHSA-fghv-69vj-qj49
   description: A browser automation framework and ecosystem.
   copyright:
     - license: Apache-2.0
@@ -44,6 +44,8 @@ pipeline:
       tag: selenium-${{package.version}}
       expected-commit: 1c58e5028bc5eaa94b12b856c2d4a87efa5363f5
 
+  - uses: maven/pombump
+
   - uses: patch
     with:
       patches: ignore-root-user-error.patch
diff --git a/selenium/pombump-deps.yaml b/selenium/pombump-deps.yaml
new file mode 100644
index 00000000000..c0a2cdbb5a0
--- /dev/null
+++ b/selenium/pombump-deps.yaml
@@ -0,0 +1,4 @@
+patches:
+  - groupId: io.netty
+    artifactId: netty-codec-http
+    version: 4.1.125.Final