Skip to content

[CELEBORN-1710] Bump commons-io version from 2.13.0 to 2.17.0#2900

Closed
turboFei wants to merge 1 commit intoapache:mainfrom
turboFei:bump_commons_io
Closed

[CELEBORN-1710] Bump commons-io version from 2.13.0 to 2.17.0#2900
turboFei wants to merge 1 commit intoapache:mainfrom
turboFei:bump_commons_io

Conversation

@turboFei
Copy link
Member

@turboFei turboFei commented Nov 11, 2024
edited
Loading

What changes were proposed in this pull request?

Bump commons-io from 2.13.0 to 2.17.0

Why are the changes needed?

To fix CVE: GHSA-78wr-2p64-hpwj

Does this PR introduce any user-facing change?

No.

How was this patch tested?

GA.

@turboFei turboFei changed the title [CELEBORN-1710] Bump commons-io from 2.13.0 to 2.17.0 [CELEBORN-1710] Bump commons-io version from 2.13.0 to 2.17.0 Nov 11, 2024
FMX
FMX approved these changes Nov 11, 2024
View reviewed changes
Copy link
Contributor

@FMX FMX left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Thanks. Merged into main(v0.6.0)

@FMX FMX closed this in 6d2b9f6 Nov 11, 2024
@turboFei turboFei deleted the bump_commons_io branch November 11, 2024 08:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cxzl25 cxzl25 cxzl25 approved these changes

@FMX FMX FMX approved these changes

@SteNicholas SteNicholas SteNicholas approved these changes

@cfmcgrady cfmcgrady Awaiting requested review from cfmcgrady

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@turboFei @cxzl25 @FMX @SteNicholas