[
https://issues.apache.org/jira/browse/NIFI-13178?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17844463#comment-17844463
]
Joe Witt edited comment on NIFI-13178 at 5/7/24 10:49 PM:
----------------------------------------------------------
Apache Mina 2.1.8 to 2.2.3
looks safe: https://mina.apache.org/mina-project/2.2-vs-2.1.html
unboundid-ldapsdk 6.0.11 to 7.0.0
looks safe: https://github.com/pingidentity/ldapsdk/releases
oauth-oidc-sdk 9.43.4 (sep 22) to 11.10.1 (Mar 24)
Seems relatively safe.
https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/src/master/CHANGELOG.txt.
Read all release notes and verified noted dependency changes are already in
our build anyway.
okhttp-digest 2.7 to 3.1.0
seems safe:
https://github.com/rburgst/okhttp-digest/blob/master/release-notes.md
reactor-netty-http 1.0.44 to 1.1.18
seems safe: https://github.com/reactor/reactor-netty/releases/tag/v1.1.18
only referenced in code coverage module. hmm
was (Author: joewitt):
Apache Mina 2.1.8 to 2.2.3
looks safe: https://mina.apache.org/mina-project/2.2-vs-2.1.html
unboundid-ldapsdk 6.0.11 to 7.0.0
looks safe: https://github.com/pingidentity/ldapsdk/releases
oauth-oidc-sdk 9.43.4 (sep 22) to 11.10.1 (Mar 24)
Seems relatively safe.
https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/src/master/CHANGELOG.txt.
Read all release notes and verified noted dependency changes are already in
our build anyway.
okhttp-digest 2.7 to 3.1.0
seems safe:
https://github.com/rburgst/okhttp-digest/blob/master/release-notes.md
reactor-netty-http 1.0.44 to 1.1.18
seems safe: https://github.com/reactor/reactor-netty/releases/tag/v1.1.18
> Upgrade Apache Mina, UnboundID Ldap
> -----------------------------------
>
> Key: NIFI-13178
> URL: https://issues.apache.org/jira/browse/NIFI-13178
> Project: Apache NiFi
> Issue Type: Task
> Reporter: Joe Witt
> Assignee: Joe Witt
> Priority: Major
> Fix For: 2.0.0-M3
>
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
