[
https://issues.apache.org/jira/browse/HBASE-26821?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Andrew Kyle Purtell updated HBASE-26821:
----------------------------------------
Fix Version/s: 3.0.0-alpha-3
Status: Patch Available (was: Open)
> Bump urllib3 in /dev-support/git-jira-release-audit
> ---------------------------------------------------
>
> Key: HBASE-26821
> URL: https://issues.apache.org/jira/browse/HBASE-26821
> Project: HBase
> Issue Type: Bug
> Components: dependabot
> Reporter: Andrew Kyle Purtell
> Assignee: Andrew Kyle Purtell
> Priority: Minor
> Fix For: 3.0.0-alpha-3
>
>
> Bumps urllib3 from 1.25.8 to 1.26.5 to resolve two dependabot warnings
> CRLF injection (Moderate)
> urllib3 (pip) · dev-support/git-jira-release-audit/requirements.txt
> Catastrophic backtracking in URL authority parser when passed URL containing
> many @ characters (High)
> urllib3 (pip) · dev-support/git-jira-release-audit/requirements.txt
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
