[jira] [Commented] (NIFI-14112) Bump dependencies for reported vulnerabilities or general hygiene including Apache Mina

ASF subversion and git services (Jira) Fri, 27 Dec 2024 05:22:04 -0800


    [ 
https://issues.apache.org/jira/browse/NIFI-14112?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17908476#comment-17908476
 ]


ASF subversion and git services commented on NIFI-14112:
--------------------------------------------------------

Commit 2f73167aae8123990e3dac479bc367a91aacef24 in nifi's branch 
refs/heads/main from Joe Witt
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=2f73167aae ]

NIFI-14112 bumped aws, gcp, azure and many other libraries for hygiene or 
reported vulns such as Mina

- ch.qos.logback        1.5.14 1.5.15
- com.aayushatharva.brotli4j    1.17.0 1.18.0
- com.hierynomus        smbj  0.13.0.  0.14.0
- com.networknt               json-schema-validator.  1.5.2 1.5.4
- com.nimbusds      nimbus-jose-jwt         9.47 9.48
- com.rabbitmq amqp-client 5.23.0 5.24.0
- io.projectreactor.netty 1.2.0 1.2.1
- org.apache.lucene 10.0.0 10.1.0
- org.elasticsearch.client 8.16.1 8.17.0
- software.amazon.awssdk        2.29.35 2.29.40
- com.github.docker-java        3.4.0 3.4.1
- com.google.apis       google-api-services-drive       v3-rev20241027-2.0.0    
v3-rev20241206-2.0.0
- com.hivemq    1.3.3 1.3.4
- com.unboundid  7.0.1 7.0.2
- io.projectreactor reactor-core/test 3.7.0 3.7.1
- net.java.dev.jna 5.15.0 5.16.0
- net.sf.py4j py4j 0.10.9.7 0.10.9.8
- org.apache.camel 4.8.1  4.8.2
- org.apache.mina 2.2.3 2.2.4
- org.eclipse.jgit      7.0.0.202409031743-r     7.1.0.202411261347-r
- org.flywaydb  11.0.0 11.1.0
- org.jline 3.27.1 3.28.0
- org.springframework.boot      3.3.6 3.4.1
- org.springframework.integration       6.4.0 6.4.1
- org.springframework.retry 2.0.10 2.0.11
- com.google.cloud libraries-bom 26.50.0 26.52.0
- com.azure azure-sdk-bom 1.2.29 1.2.30
- spring-data-redis 3.4.0 3.4.1
- com.google.guava 33.3.1-jre 33.4.0-jre

Signed-off-by: Pierre Villard <[email protected]>

This closes #9597.


> Bump dependencies for reported vulnerabilities or general hygiene including 
> Apache Mina
> ---------------------------------------------------------------------------------------
>
>                 Key: NIFI-14112
>                 URL: https://issues.apache.org/jira/browse/NIFI-14112
>             Project: Apache NiFi
>          Issue Type: Task
>            Reporter: Joe Witt
>            Assignee: Joe Witt
>            Priority: Major
>          Time Spent: 0.5h
>  Remaining Estimate: 0h
>
> ch.qos.logback        1.5.14 1.5.15
> com.aayushatharva.brotli4j    1.17.0 1.18.0
> com.hierynomus        smbj  0.13.0.  0.14.0
> com.networknt               json-schema-validator.  1.5.2 1.5.4
> com.nimbusds      nimbus-jose-jwt         9.47 9.48
> com.rabbitmq amqp-client 5.23.0 5.24.0
> io.projectreactor.netty 1.2.0 1.2.1
> org.apache.lucene 10.0.0 10.1.0
> org.elasticsearch.client 8.16.1 8.17.0
> software.amazon.awssdk        2.29.35 2.29.40
> com.github.docker-java        3.4.0 3.4.1
> com.google.apis       google-api-services-drive       v3-rev20241027-2.0.0    
> v3-rev20241206-2.0.0    
> com.hivemq    1.3.3 1.3.4
> com.unboundid  7.0.1 7.0.2
> io.projectreactor reactor-core/test 3.7.0 3.7.1
> net.java.dev.jna 5.15.0 5.16.0
> net.sf.py4j py4j 0.10.9.7 0.10.9.8
> org.apache.camel 4.8.1  4.8.2
> org.apache.mina 2.2.3 2.2.4
> org.eclipse.jgit      7.0.0.202409031743-r     7.1.0.202411261347-r   
> org.flywaydb  11.0.0 11.1.0
> org.jline 3.27.1 3.28.0
> org.springframework.boot      3.3.6 3.4.1
> org.springframework.integration       6.4.0 6.4.1
> org.springframework.retry 2.0.10 2.0.11
> com.google.cloud libraries-bom 26.50.0 26.52.0
> com.azure azure-sdk-bom 1.2.29 1.2.30
> spring-data-redis 3.4.0 3.4.1
> com.google.guava 33.3.1-jre 33.4.0-jre        



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (NIFI-14112) Bump dependencies for reported vulnerabilities or general hygiene including Apache Mina

Reply via email to