-
Notifications
You must be signed in to change notification settings - Fork 405
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
FLINK-36197 bump curator-test and postgres #878
base: main
Are you sure you want to change the base?
Conversation
@r-sidd it would be great to bundle test-dependency upgrades together in 1-2 PRs if you are going to do any further |
Sure, let me see if any other test dependency can be upgraded and will try bundling it in this PR. |
483b3bd
to
5e45aaa
Compare
@gyfora can we merge this PR or if there is anything that needs to be taken care of please let me know 🙂 |
CI failed , let me retrigger it |
did you run the tests locally? |
Yes sure |
Let me run the tests locally as well |
5e45aaa
to
67bec42
Compare
@gyfora can you retrigger the scans |
@gyfora - The tests were failing because of the derby version, I'll try to push it in a separate PR. |
Bump curator-test version to latest (5.7.0) to remediate the vulnerabilities in the dependant packages.
Package details:
https://mvnrepository.com/artifact/org.apache.curator/curator-test/5.7.0
Bump postgresql version to 42.5.6 to remediate a direct finding.
Finding details:
CVE-2024-1597
Package details:
https://mvnrepository.com/artifact/org.postgresql/postgresql/42.5.6
Bump derby version to latest (10.17.1.0) to remediate direct finding.
Finding details:
CVE-2022-46337
Package details:
https://mvnrepository.com/artifact/org.apache.derby/derby/10.17.1.0
Does this pull request potentially affect one of the following parts:
Documentation