xuang7 opened a new pull request, #6373:
URL: https://github.com/apache/texera/pull/6373

   ### What changes were proposed in this PR?
   
   Refreshes the two per-module `LICENSE-binary` files on `release/v1.2` to 
match the versions actually bundled, clearing the drift reported by the 
license-binary checker ([run 
29206730792](https://github.com/apache/texera/actions/runs/29206730792)).
   
   **`amber/LICENSE-binary-java` (1):**
   - `org.bouncycastle.bcprov-jdk18on` 1.82 → 1.84 — completes #6316 (the 
CVE-2025-14813 bouncycastle bump pinned the override to 1.84 but left this line 
at 1.82).
   
   **`amber/LICENSE-binary-python` (10):** transitive packages, version-only 
bumps to match the freshly-resolved bundle:
   `aiohappyeyeballs` 2.6.2→2.7.1, `charset-normalizer` 3.4.7→3.4.9, `filelock` 
3.29.4→3.29.7, `greenlet` 3.5.2→3.5.3, `huggingface-hub` 1.20.1→1.23.0, `regex` 
2026.5.9→2026.7.10, `scramp` 1.4.9→1.4.12, `tqdm` 4.68.3→4.68.4, `typer` 
0.25.1→0.26.8, `tzdata` 2026.2→2026.3.
   
   License groupings are unchanged; only version strings were updated.
   
   ### Any related issues, documentation, discussions?
   
   Closes #6372. Follow-up to #6316.
   
   ### How was this PR tested?
   
   Version-only metadata change, verified by the license-binary checker on 
`release/v1.2`. Note: the Python entries are transitive and float with PyPI, so 
the check must be re-run immediately before tagging RC3 and topped up if any 
newer drift has appeared by then.
   
   ### Was this PR authored or co-authored using generative AI tooling?
   
   Generated-by: Claude Code (Claude Opus 4.8)
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Reply via email to