[
https://issues.apache.org/jira/browse/HIVE-23344?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Karen Coppage updated HIVE-23344:
---------------------------------
Status: Open (was: Patch Available)
> Remove org.scala-lang:scala-compiler 2.11.0 transitive dependency
> -----------------------------------------------------------------
>
> Key: HIVE-23344
> URL: https://issues.apache.org/jira/browse/HIVE-23344
> Project: Hive
> Issue Type: Improvement
> Reporter: Karen Coppage
> Assignee: Karen Coppage
> Priority: Major
> Attachments: HIVE-23344.01.patch, HIVE-23344.01.patch
>
>
> Lots of
> org.scala-lang:scala-compiler:jar:2.11.0:compile ->
> org.scala-lang:scalap:jar:2.11.0:compile ->
> org.json4s:json4s-core_2.11:jar:3.2.11:compile ->
> org.json4s:json4s-jackson_2.11:jar:3.2.11:compile ->
> org.apache.spark:spark-core_2.11:jar:2.3.0:compile
> Where scala-compiler 2.11.0 is a security vulnerability.
> Excluding org.json4s:json4s-jackson_2.11:jar:3.2.11 from spark-core_2
> dependencies.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
