Github user steveloughran commented on the issue:
https://github.com/apache/spark/pull/21060
This is one of those great problems in software engineering: no good
answer. I think case-by-case is generally the best tactic, with a bias against
feature backport, though my track record is a bit mixed.
Patches which fix security issues at the expense of compatibility are real
problems here: they need to go in even knowing stuff will break âespecially
when you quietly push it out with an innocuous JIRA title until you actually do
the releases. People start complaining that XML entity expansion has has
stopped working, REST APIs failing if unauthed, when that is the exact outcome
intended,
Talk to @templedf for a good policy here
---
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
