FrankChen021 commented on PR #13234: URL: https://github.com/apache/druid/pull/13234#issuecomment-1287589527
@a2l007 Thanks for the information. I took a look at the [fix of the reported security problem](https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/bfd95d5e), it's related to XML parsing functionality which I think is not used in our repo. In other words, Druid is not affected by this problem. I think we can ignore this security problem. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
