senthh opened a new pull request, #12709: URL: https://github.com/apache/hudi/pull/12709
### Change Logs Upgrade commons-io to fix https://github.com/advisories/GHSA-78wr-2p64-hpwj ### Impact https://github.com/advisories/GHSA-78wr-2p64-hpwj: Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU resources when processing maliciously crafted input. ### Risk level (write none, low medium or high below) HIGH ### Documentation Update Upgrade commons-io to 2.14.0 version ### Contributor's checklist - [ ] Read through [contributor's guide](https://hudi.apache.org/contribute/how-to-contribute) - [ ] Change Logs and Impact were stated clearly - [ ] Adequate tests were added if applicable - [ ] CI passed -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
