wuchong opened a new pull request, #3408:
URL: https://github.com/apache/fluss/pull/3408

   ## Summary
   
   - Add a **Security Updates** section to `website/community/security.md`, 
modeled after the [Flink security 
page](https://flink.apache.org/what-is-flink/security/), to publicly track 
fixed CVEs.
   - Add the first entry for 
**[CVE-2026-49361](https://www.cve.org/CVERecord?id=CVE-2026-49361)** (Netty 
frame decoder memory exhaustion, affecting 0.8.0 and 0.9.0, fixed in 0.9.1), 
with a link to the [announcement 
thread](https://lists.apache.org/thread/dccw6tj0njwtmvbftq13mw7fdhsok373).
   
   ## Test plan
   
   - [ ] Run the website locally (`npm run start` in `website/`) and confirm 
the table renders correctly on `/community/security`.
   - [ ] Verify the CVE link, version list, and advisory link all resolve.
   
   🤖 Generated with [Claude Code](https://claude.com/claude-code)


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Reply via email to