-
Notifications
You must be signed in to change notification settings - Fork 155
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CVE fix: Update parquet-format version to remove vulnerabilities #259
Conversation
|
pom.xml
Outdated
@@ -77,7 +77,7 @@ | |||
<hive.version>1.2.2</hive.version> | |||
<joda.version>2.9.6</joda.version> | |||
<licenses.version>5.4.10-SNAPSHOT</licenses.version> | |||
<parquet.version>1.11.1</parquet.version> | |||
<parquet.version>1.11.2</parquet.version> |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
why not to the latest version 1.12.3?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I basically used the earliest version which doesn't have the mentioned CVE.
I can bump up to 1.12.3
, given looking at changelog for 1.12.0, it seems there is nothing mentioned as backward in-compatible
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, I think we can run integration/ manual test if not done already
* CVE fix: Update parquet-format version to remove vulnerabilities (#259) Co-authored-by: Siddhartha Agarwal <pulsid.agarwal@gmail.com>
Problem
CCMSG-2014: Vulnerable dependency "parquet:parquet-format-structures" for kafka-connect-storage-cloud:master-latest
Solution
Update version of parquet-format to 1.11.2
Does this solution apply anywhere else?
Test Strategy
Tested with unit-tests and integration-test in kafka-connect-storage-cloud
Testing done:
N/A
Release Plan
Release as patch versions