Thanks, Ilya. It would be really great to have your patch included into 2.8 scope. I'd like to give my two cent as well. For example we have vulnerable dependencies here: modules/cassandra/store/pom.xml - commons-beanutils modules/zookeeper/pom.xml - transitive Jackson from Curator
I'd suggest to uprgrade commons-beanutils:commons-beanutils to 1.9.4 and override com.fasterxml.jackson.core:jackson-databind to our common jackson version from other modules. -- Sent from: http://apache-ignite-developers.2346864.n4.nabble.com/
