fix(QTDI-2863): bump tomcat to 9.0.118

[undx]

Requirements

• Any code change adding any logic MUST be tested through a unit test executed with the default build
• Any API addition MUST be done with a documentation update if relevant

Why this PR is needed?

QTDI-2863 : CVE-2026-41293|CVE-2026-43512|CVE-2026-43515 org.apache.tomcat:tomcat-catalina 9.0.117

What does this PR adds (design/code thoughts)?

AI generated code

https://internal.qlik.dev/general/ways-of-working/code-reviews/#guidelines-for-ai-generated-code

• [] this PR has been written with the help of GitHub Copilot or another generative AI tool

[Copilot]

Pull request overview

Updates the project’s Apache Tomcat dependency version to address the CVEs referenced in QTDI-2863 by bumping org.apache.tomcat:* artifacts managed via the root Maven property.

Changes:

• Bump tomcat.version from 9.0.117 to 9.0.118 in the root pom.xml.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[sonar-rnd]

Quality Gate passed

Issues

• 0 New Issues
• 0 Fixed Issues
• 0 Accepted Issues

Measures

• 0 Security Hotspots
• No data about coverage (0.00% Estimated after merge)
• 0.00% Duplicated Code (1.50% Estimated after merge)

Project ID: org.talend.sdk.component:component-runtime

View in SonarQube