This is an automated email from the ASF dual-hosted git repository. nicoloboschi pushed a commit to branch branch-2.10 in repository https://gitbox.apache.org/repos/asf/pulsar.git
commit 08fa2cf5be292080882966c4551d7a6a5872be13 Author: Nicolò Boschi <[email protected]> AuthorDate: Wed Apr 6 12:04:06 2022 +0200 [fix][security] Upgrade MySQL connector to 8.0.28 to get rid of CVE-2021-3711 (#14998) (cherry picked from commit 1df46db634ac360b10db0a7cad6fada321031477) --- pom.xml | 1 + pulsar-io/debezium/mysql/pom.xml | 10 ++++++++++ 2 files changed, 11 insertions(+) diff --git a/pom.xml b/pom.xml index f5b51f269da..d99277c0797 100644 --- a/pom.xml +++ b/pom.xml @@ -162,6 +162,7 @@ flexible messaging model and an intuitive client API.</description> <scala-library.version>2.13.6</scala-library.version> <debezium.version>1.7.2.Final</debezium.version> <debezium.postgresql.version>42.2.25</debezium.postgresql.version> + <debezium.mysql.version>8.0.28</debezium.mysql.version> <jsonwebtoken.version>0.11.1</jsonwebtoken.version> <opencensus.version>0.28.0</opencensus.version> <hbase.version>2.4.9</hbase.version> diff --git a/pulsar-io/debezium/mysql/pom.xml b/pulsar-io/debezium/mysql/pom.xml index 779bebf48d4..2c87b35388e 100644 --- a/pulsar-io/debezium/mysql/pom.xml +++ b/pulsar-io/debezium/mysql/pom.xml @@ -46,6 +46,16 @@ </dependencies> + <dependencyManagement> + <dependencies> + <dependency> + <groupId>mysql</groupId> + <artifactId>mysql-connector-java</artifactId> + <version>${debezium.mysql.version}</version> + </dependency> + </dependencies> + </dependencyManagement> + <build> <plugins>
