Skip to content

Commit

Permalink
[fix][sec] Upgrade commons-compress to 1.26.0 (#22086)
Browse files Browse the repository at this point in the history 
(cherry picked from commit 613a771)
  • Loading branch information
@massakam @lhotari
massakam authored and lhotari committed Feb 21, 2024
1 parent 47972af commit 179016b
Show file tree
Hide file tree
Showing 5 changed files with 8 additions and 4 deletions.
2 changes: 1 addition & 1 deletion distribution/server/src/assemble/LICENSE.bin.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -285,7 +285,7 @@ The Apache Software License, Version 2.0
- commons-lang-commons-lang-2.6.jar
- commons-logging-commons-logging-1.1.1.jar
- org.apache.commons-commons-collections4-4.4.jar
- org.apache.commons-commons-compress-1.21.jar
- org.apache.commons-commons-compress-1.26.0.jar
- org.apache.commons-commons-lang3-3.11.jar
- org.apache.commons-commons-text-1.10.0.jar
* Netty
Expand Down
2 changes: 1 addition & 1 deletion distribution/shell/src/assemble/LICENSE.bin.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -346,7 +346,7 @@ The Apache Software License, Version 2.0
- commons-logging-1.2.jar
- commons-lang3-3.11.jar
- commons-text-1.10.0.jar
- commons-compress-1.21.jar
- commons-compress-1.26.0.jar
* Netty
- netty-buffer-4.1.100.Final.jar
- netty-codec-4.1.100.Final.jar
Expand Down
2 changes: 1 addition & 1 deletion pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -131,7 +131,7 @@ flexible messaging model and an intuitive client API.</description>
<narPluginPhase>package</narPluginPhase>

<!-- apache commons -->
<commons-compress.version>1.21</commons-compress.version>
<commons-compress.version>1.26.0</commons-compress.version>

<bookkeeper.version>4.16.4</bookkeeper.version>
<zookeeper.version>3.9.1</zookeeper.version>
Expand Down
4 changes: 4 additions & 0 deletions .../runtime-all/src/test/java/org/apache/pulsar/functions/instance/JavaInstanceDepsTest.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,6 +46,8 @@
* 8. Apache AVRO
* 9. Jackson Mapper and Databind (dependency of AVRO)
* 10. Apache Commons Compress (dependency of AVRO)
* 11. Apache Commons Lang (dependency of Apache Commons Compress)
* 12. Apache Commons IO (dependency of Apache Commons Compress)
*/
public class JavaInstanceDepsTest {

Expand All @@ -71,6 +73,8 @@ public void testInstanceJarDeps() throws IOException {
&& !name.startsWith("org/apache/avro")
&& !name.startsWith("com/fasterxml/jackson")
&& !name.startsWith("org/apache/commons/compress")
&& !name.startsWith("org/apache/commons/lang3")
&& !name.startsWith("org/apache/commons/io")
&& !name.startsWith("com/google")
&& !name.startsWith("org/checkerframework")
&& !name.startsWith("javax/annotation")
Expand Down
2 changes: 1 addition & 1 deletion pulsar-sql/presto-distribution/LICENSE
View file
Original file line number Diff line number Diff line change
Expand Up @@ -228,7 +228,7 @@ The Apache Software License, Version 2.0
- guice-5.1.0.jar
* Apache Commons
- commons-math3-3.6.1.jar
- commons-compress-1.21.jar
- commons-compress-1.26.0.jar
- commons-lang3-3.11.jar
* Netty
- netty-buffer-4.1.100.Final.jar
Expand Down

0 comments on commit 179016b

Please sign in to comment.