zhfeng commented on PR #24636: URL: https://github.com/apache/shardingsphere/pull/24636#issuecomment-1475326476
Thanks @terrymanu for taking care of the upgarding. I did some works on `shardingsphere-elasticjob` to test with spring-boot `2.7.10-SNAPSHOT` and snakeyaml `2.0`. See https://github.com/zhfeng/shardingsphere-elasticjob/commit/0c2d7b3be4a1c3b4b374acd9ef82c4e5a3b02e91 We need to be very careful about these CVE issues. Anyway, if I understand correctly, we only use `snakeyaml` for parsing the configuration files. So it could be low risk in this case. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
