[ https://issues.apache.org/jira/browse/BEAM-9401?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Kyle Weaver updated BEAM-9401: ------------------------------ Status: Open (was: Triage Needed) > Flink MiniCluster should bind to localhost > ------------------------------------------ > > Key: BEAM-9401 > URL: https://issues.apache.org/jira/browse/BEAM-9401 > Project: Beam > Issue Type: Improvement > Components: runner-flink, testing > Reporter: Kyle Weaver > Assignee: Kyle Weaver > Priority: Major > Time Spent: 10m > Remaining Estimate: 0h > > Vulnerability detection services have identified an XSS vulnerability with > the Flink web UI (QUALYS-86175) when I run the Flink MiniCluster on my > workstation. I'm not sure how serious the vulnerability is, but the easiest > way to prevent it would be to bind the the server against localhost. -- This message was sent by Atlassian Jira (v8.3.4#803005)