[
https://issues.apache.org/jira/browse/BEAM-9401?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Kyle Weaver updated BEAM-9401:
------------------------------
Status: Open (was: Triage Needed)
> Flink MiniCluster should bind to localhost
> ------------------------------------------
>
> Key: BEAM-9401
> URL: https://issues.apache.org/jira/browse/BEAM-9401
> Project: Beam
> Issue Type: Improvement
> Components: runner-flink, testing
> Reporter: Kyle Weaver
> Assignee: Kyle Weaver
> Priority: Major
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Vulnerability detection services have identified an XSS vulnerability with
> the Flink web UI (QUALYS-86175) when I run the Flink MiniCluster on my
> workstation. I'm not sure how serious the vulnerability is, but the easiest
> way to prevent it would be to bind the the server against localhost.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
