ctubbsii opened a new pull request, #3819: URL: https://github.com/apache/accumulo/pull/3819
* Mitigate CVE-2023-33201 in bouncycastle test dependency by updating to 1.76; it's unlikely we'd have hit this issue, because we only use this for a test dependency for our Ssl tests, but it is still good to keep it up to date. * The Java 1.5-compatible bouncycastle libraries are no longer maintained, so this moves to the versions that require Java 8, which is not a problem, since we require at least Java 11 for 2.1 and later. * Also replace usage of bouncycastle's Arrays.fill with Java's own, which was a bug in some compaction ITs. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
