chamikaramj commented on issue #26743: URL: https://github.com/apache/beam/issues/26743#issuecomment-2143199106
So we can either downgrade SnakeYAML to 1.33 or upgrade Jackson to 2.15. SnakeYAML 1.33 has a a known vulnerability so upgrading Jackson is probably preferable. I'm not sure if we run into other conflicts due to other dependencies transitively depending on Jackson 2.14 though. Assigning to @Abacn to comment on the feasibility / best approach on resolving this conflict. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
