gianm commented on issue #12471: URL: https://github.com/apache/druid/issues/12471#issuecomment-1121280139
Would be good to upgrade anyway even if we're not affected, since users sometimes like to run automated scans and any CVE in a dependency will get flagged. Then they need to go and figure out if Druid is affected or not, which may be tough for them since they don't understand the system as well as the project team. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
