Hi, 1. Apache drill has htrace as a dependency. From what I can tell htrace is no longer an active project. htrace has a shaded version of com.fasterxml.jackson.core:jackson-databind:2.4.0. This version has several vulnerabilities. Are there any plans to resolve these vulnerabilities or replace htrace?
https://nvd.nist.gov/vuln/search/results?form_type=Advanced&results_type=overview&search_type=all&cpe_vendor=cpe%3A%2F%3Afasterxml&cpe_product=cpe%3A%2F%3Afasterxml%3Ajackson-databind&cpe_version=cpe%3A%2F%3Afasterxml%3Ajackson-databind%3A2.4.0 Thank you Derek
