Upgraded Bouncy Castle dependencies from 1.59 to 1.60

[jruusu]

Fixes CVE-2018-1000180, CVE-2018-1000613 in bcprov-jdk15on 1.59

Using rm-hull/lein-nvd, result of lein nvd check ...

Before:

+-----------------------------+------------------------------------+ | dependency | status | +-----------------------------+------------------------------------+ | bcpkix-jdk15on-1.59.jar | OK | | bcprov-jdk15on-1.59.jar | CVE-2018-1000180, CVE-2018-1000613 | | cheshire-5.8.0.jar | OK | | clojure-1.9.0.jar | OK | | commons-codec-1.11.jar | OK | | core.specs.alpha-0.1.24.jar | OK | | eddsa-0.3.0.jar | OK | | jackson-core-2.9.0.jar | OK | | spec.alpha-0.1.143.jar | OK | | test.check-0.9.0.jar | OK | | tigris-0.1.1.jar | OK | +-----------------------------+------------------------------------+ 2 vulnerabilities detected. Severity: HIGH 

After:

+-----------------------------+--------+ | dependency | status | +-----------------------------+--------+ | bcpkix-jdk15on-1.60.jar | OK | | bcprov-jdk15on-1.60.jar | OK | | cheshire-5.8.0.jar | OK | | clojure-1.9.0.jar | OK | | commons-codec-1.11.jar | OK | | core.specs.alpha-0.1.24.jar | OK | | eddsa-0.3.0.jar | OK | | jackson-core-2.9.0.jar | OK | | spec.alpha-0.1.143.jar | OK | | test.check-0.9.0.jar | OK | | tigris-0.1.1.jar | OK | +-----------------------------+--------+ 0 vulnerabilities detected. Severity: NONE 

[alexanderkiel]

I can reproduce the lein-dvd output and use buddy-core myself with Bouncy Castle 1.60 since August 2018.