RussellSpitzer commented on issue #16494: URL: https://github.com/apache/iceberg/issues/16494#issuecomment-4503019714
Not a library security issue. A user who can run Spark with credentials that reach storage can read any Iceberg table path they know. Path-based loading is documented behavior. Calling this a “catalog bypass” only makes sense if you assume Spark users are restricted to catalog identifiers while the runtime still has broader storage access to storage. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
