Abhishek Chennaka has uploaded this change for review. ( http://gerrit.cloudera.org:8080/22764
Change subject: Upgrade Java dependencies ...................................................................... Upgrade Java dependencies Updgrades the Java dependencies and Gradle versions to mitigate known CVE reports. Major version upgrades: - guava - 32.1.1-jre -> 33.3.1-jre - hamcrest - 2.2 -> 3.0 Minor version upgrades: - clojure - 1.10.3 -> 1.12.0 - clojuteToolsCli - 1.0.206 -> 1.1.230 - hadoop - 3.3.1 -> 3.4.1 - hdr histogram - 2.1.12 -> 2.2.2 - jmh - 1.34 -> 1.37 - log4j - 2.17.1 -> 2.24.3 - log4jCaptor - 2.9.2 -> 2.10.0 - scopt - 4.0.1 -> 4.1.0 Maintenance version upgrades: - httpClient - 4.5.13 -> 4.5.14 - jetty - 9.4.44.v20210927 -> 9.4.57.v20241219 - scala - 2.12.15 -> 2.12.20 - scalatest - 3.2.10 -> 3.2.19 - slf4j - 1.7.33 -> 1.7.36 Gradle upgrades: - gradle-versions-plugin - 0.41.0 -> 0.51.0 - gradle-jacoco-log - 1.2.4 -> 2.0.0 - osdetector-gradle-plugin - 1.7.0 -> 1.7.3 - nebula-clojure-plugin - 10.1.1 -> 14.2.2 - spotbugs-gradle-plugin - 4.7.0 -> 4.7.5 - gradle-animalsniffer-plugin - 1.5.4 -> 1.7.2 - guava - 31.0.1-jre -> 33.4.0-jre mockitoCore library dependency is added to the upgraded hadoop version[1] Changes in shadow.gradle: Excluding classes aove Java19 as Gradle 7.6 doesn't recognize them. Excluding Java9 version Multi-Release JAR specific classes(module-info.class). Excluding bouncycastle due to [2]. [1] https://issues.apache.org/jira/browse/MAPREDUCE-7471 [2] https://github.com/apache/hadoop/blob/4d7825309348956336b8f06a08322b78422849b1/hadoop-client-modules/hadoop-client-runtime/pom.xml#L156-L157 Change-Id: Id1b43e3cc8228e94fbbd3085933cd62bf089e23d Reviewed-on: http://gerrit.cloudera.org:8080/22374 Tested-by: Alexey Serbin <[email protected]> Reviewed-by: Alexey Serbin <[email protected]> Reviewed-by: Zoltan Chovan <[email protected]> (cherry picked from commit 6e67411ad69ec4bd0b075952e621a9b173fbefaf) --- M java/buildSrc/build.gradle M java/gradle/dependencies.gradle M java/gradle/shadow.gradle M java/kudu-backup-tools/build.gradle M java/kudu-hive/build.gradle 5 files changed, 39 insertions(+), 27 deletions(-) git pull ssh://gerrit.cloudera.org:29418/kudu refs/changes/64/22764/1 -- To view, visit http://gerrit.cloudera.org:8080/22764 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: branch-1.18.x Gerrit-MessageType: newchange Gerrit-Change-Id: Id1b43e3cc8228e94fbbd3085933cd62bf089e23d Gerrit-Change-Number: 22764 Gerrit-PatchSet: 1 Gerrit-Owner: Abhishek Chennaka <[email protected]>
