fix vulnerbilities CVE-2018-11039 and CVE-2018-11040 (#379)

* fix vulnerbilities CVE-2018-11039 and CVE-2018-11040

* use spring boot managed snakeyaml dependency

azure-spring-boot-parent/pom.xml

@@ -27,7 +27,7 @@
         <maven.compiler.target>1.8</maven.compiler.target>
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
 
-        <spring.boot.version>2.0.1.RELEASE</spring.boot.version>
+        <spring.boot.version>2.0.3.RELEASE</spring.boot.version>
         <findbugs.annotations.version>2.0.1</findbugs.annotations.version>
         <nimbus.jose.jwt.version>4.39.2</nimbus.jose.jwt.version>
         <mockito.core.version>2.8.9</mockito.core.version>
@@ -35,7 +35,6 @@
         <powermock.api.mockito2.version>1.7.0</powermock.api.mockito2.version>
         <org.json.version>20171018</org.json.version>
         <commons.logging.version>1.2</commons.logging.version>
-        <snakeyaml.version>1.17</snakeyaml.version>
     </properties>
 
     <profiles>
@@ -95,11 +94,6 @@
                 <artifactId>commons-logging</artifactId>
                 <version>${commons.logging.version}</version>
             </dependency>
-            <dependency>
-                <groupId>org.yaml</groupId>
-                <artifactId>snakeyaml</artifactId>
-                <version>${snakeyaml.version}</version>
-            </dependency>
         </dependencies>
     </dependencyManagement>