alexku7 commented on issue #8815: URL: https://github.com/apache/pulsar/issues/8815#issuecomment-790836272
Hello guys We try to certify the pulsar according the few security standards . We scanned the pulsar image 2.7.0 by WhiteSource Unfortunately , 167 high risk CVE have be discovered in the 55 outdated libraries that were marked is High risk vulnerable . It's "bit" makes our effort to certify the pulsar for the highly secured production environment to be complicated :disappointed: On the other hand , there is the opened issue about automated security scanning. Any change to move this issue forward or at least tu upgrade the outdated libraries? Could make significant boost to adoption the pulsar by many security regulated environments ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
