Thanks for the support. Could a PMC member help copying the GPG pub key
from https://dist.apache.org/repos/dist/dev/beam/KEYS (currently the last
one, after the second-last "END PGP PUBLIC KEY BLOCK") to
https://dist.apache.org/repos/dist/release/beam/KEYS ?
On Fri, Jan 12, 2024 at 11:28 AM
Yes, thank you!
On Thu, Jan 11, 2024 at 8:21 PM Chamikara Jayalath via dev <
dev@beam.apache.org> wrote:
> Sounds good and thanks for doing this :)
>
> - Cham
>
> On Thu, Jan 11, 2024 at 8:06 AM Yi Hu via dev wrote:
>
>> Hi everyone,
>>
>> I would like to volunteer to upgrade the Beam vendored
Sounds good and thanks for doing this :)
- Cham
On Thu, Jan 11, 2024 at 8:06 AM Yi Hu via dev wrote:
> Hi everyone,
>
> I would like to volunteer to upgrade the Beam vendored grpc, as requested
> by the GitHub Issue [1]. The last update was in Apr 2023 [2]. There have
> been vulnerabilities in
Hi everyone,
I would like to volunteer to upgrade the Beam vendored grpc, as requested
by the GitHub Issue [1]. The last update was in Apr 2023 [2]. There have
been vulnerabilities in its dependencies as well as potential oom issues
found since then (see [1]), and also to include grpc-alts [2].
Great idea, yes. Always helpful to upgrade, especially when there is a
reason.
Kenn
On Wed, Mar 29, 2023 at 12:52 PM Yi Hu via dev wrote:
> Hi all,
>
> I would like to volunteer to upgrade the Beam vendored grpc, as
> requested by the GitHub Issue [1]. I checked the project history that we
>
Hi all,
I would like to volunteer to upgrade the Beam vendored grpc, as
requested by the GitHub Issue [1]. I checked the project history that we
did four upgrades in the last 2 years (1.26->1.36->1.43->1.48) and the last
time was in Aug 2022 [2]. There have been vulnerabilities in its