[
https://issues.apache.org/jira/browse/BEAM-9401?focusedWorklogId=394495&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-394495
]
ASF GitHub Bot logged work on BEAM-9401:
----------------------------------------
Author: ASF GitHub Bot
Created on: 27/Feb/20 22:11
Start Date: 27/Feb/20 22:11
Worklog Time Spent: 10m
Work Description: ibzib commented on issue #10995: [BEAM-9401] bind Flink
MiniCluster to localhost
URL: https://github.com/apache/beam/pull/10995#issuecomment-592202965
Run PortableJar_Flink PostCommit
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
Issue Time Tracking
-------------------
Worklog Id: (was: 394495)
Time Spent: 20m (was: 10m)
> Flink MiniCluster should bind to localhost
> ------------------------------------------
>
> Key: BEAM-9401
> URL: https://issues.apache.org/jira/browse/BEAM-9401
> Project: Beam
> Issue Type: Improvement
> Components: runner-flink, testing
> Reporter: Kyle Weaver
> Assignee: Kyle Weaver
> Priority: Major
> Time Spent: 20m
> Remaining Estimate: 0h
>
> Vulnerability detection services have identified an XSS vulnerability with
> the Flink web UI (QUALYS-86175) when I run the Flink MiniCluster on my
> workstation. I'm not sure how serious the vulnerability is, but the easiest
> way to prevent it would be to bind the the server against localhost.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
