potiuk commented on issue #59485: URL: https://github.com/apache/airflow/issues/59485#issuecomment-3658307502
Generally such upgrades happen during our release and there is no need to open such issues. If you afraid that airflow is affected by it - I recommend you to check SBOM on our website in security tab - this is an industry standard way of checking which 3rd-party dependencies are used in Airflow - this way you can check if you are affected or not, the CVE lists components affected and you can cross check which components list in SBOM. This is how usually commercial users of free software you get check if they are affected. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
