This is an automated email from the ASF dual-hosted git repository.
ethanfeng pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/celeborn.git
The following commit(s) were added to refs/heads/main by this push:
new b5c00ea64 [CELEBORN-1862] Bump Ratis version from 3.1.2 to 3.1.3
b5c00ea64 is described below
commit b5c00ea64591dc4b8761a910d30e52879a755cf5
Author: madlnu <[email protected]>
AuthorDate: Wed Feb 12 17:46:58 2025 +0800
[CELEBORN-1862] Bump Ratis version from 3.1.2 to 3.1.3
### What changes were proposed in this pull request?
Upgrading ratis version to 3.1.3
### Why are the changes needed?
For fixing the CVE-2024-7254 and sonatype-2020-0026 coming from its
transitive dependency - ratis-thirdparty-misc
### Does this PR introduce _any_ user-facing change?
No
### How was this patch tested?
Locally and CI tests
Closes #3095 from Madhukar525722/main.
Authored-by: madlnu <[email protected]>
Signed-off-by: mingji <[email protected]>
---
dev/deps/dependencies-server | 22 +++++++++++-----------
pom.xml | 2 +-
project/CelebornBuild.scala | 2 +-
3 files changed, 13 insertions(+), 13 deletions(-)
diff --git a/dev/deps/dependencies-server b/dev/deps/dependencies-server
index 1b373c729..1a34f83a0 100644
--- a/dev/deps/dependencies-server
+++ b/dev/deps/dependencies-server
@@ -122,17 +122,17 @@
osgi-resource-locator/1.0.3//osgi-resource-locator-1.0.3.jar
paranamer/2.8//paranamer-2.8.jar
picocli/4.7.6//picocli-4.7.6.jar
protobuf-java/3.25.5//protobuf-java-3.25.5.jar
-ratis-client/3.1.2//ratis-client-3.1.2.jar
-ratis-common/3.1.2//ratis-common-3.1.2.jar
-ratis-grpc/3.1.2//ratis-grpc-3.1.2.jar
-ratis-metrics-api/3.1.2//ratis-metrics-api-3.1.2.jar
-ratis-metrics-default/3.1.2//ratis-metrics-default-3.1.2.jar
-ratis-netty/3.1.2//ratis-netty-3.1.2.jar
-ratis-proto/3.1.2//ratis-proto-3.1.2.jar
-ratis-server-api/3.1.2//ratis-server-api-3.1.2.jar
-ratis-server/3.1.2//ratis-server-3.1.2.jar
-ratis-shell/3.1.2//ratis-shell-3.1.2.jar
-ratis-thirdparty-misc/1.0.6//ratis-thirdparty-misc-1.0.6.jar
+ratis-client/3.1.3//ratis-client-3.1.3.jar
+ratis-common/3.1.3//ratis-common-3.1.3.jar
+ratis-grpc/3.1.3//ratis-grpc-3.1.3.jar
+ratis-metrics-api/3.1.3//ratis-metrics-api-3.1.3.jar
+ratis-metrics-default/3.1.3//ratis-metrics-default-3.1.3.jar
+ratis-netty/3.1.3//ratis-netty-3.1.3.jar
+ratis-proto/3.1.3//ratis-proto-3.1.3.jar
+ratis-server-api/3.1.3//ratis-server-api-3.1.3.jar
+ratis-server/3.1.3//ratis-server-3.1.3.jar
+ratis-shell/3.1.3//ratis-shell-3.1.3.jar
+ratis-thirdparty-misc/1.0.8//ratis-thirdparty-misc-1.0.8.jar
rocksdbjni/9.5.2//rocksdbjni-9.5.2.jar
scala-library/2.12.18//scala-library-2.12.18.jar
scala-reflect/2.12.18//scala-reflect-2.12.18.jar
diff --git a/pom.xml b/pom.xml
index 2354dc749..0ad395a0d 100644
--- a/pom.xml
+++ b/pom.xml
@@ -95,7 +95,7 @@
<netty.version>4.1.115.Final</netty.version>
<bouncycastle.version>1.77</bouncycastle.version>
<protobuf.version>3.25.5</protobuf.version>
- <ratis.version>3.1.2</ratis.version>
+ <ratis.version>3.1.3</ratis.version>
<scalatest.version>3.2.16</scalatest.version>
<slf4j.version>1.7.36</slf4j.version>
<roaringbitmap.version>1.0.6</roaringbitmap.version>
diff --git a/project/CelebornBuild.scala b/project/CelebornBuild.scala
index c0840492c..6868d532f 100644
--- a/project/CelebornBuild.scala
+++ b/project/CelebornBuild.scala
@@ -60,7 +60,7 @@ object Dependencies {
val metricsVersion = "4.2.25"
val mockitoVersion = "4.11.0"
val nettyVersion = "4.1.115.Final"
- val ratisVersion = "3.1.2"
+ val ratisVersion = "3.1.3"
val roaringBitmapVersion = "1.0.6"
val rocksdbJniVersion = "9.5.2"
val jacksonVersion = "2.15.3"
