Skip to content

[Enhancement] Fixing Vulnerability #58425

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 27, 2025
Merged

[Enhancement] Fixing Vulnerability #58425

merged 1 commit into from
Apr 27, 2025

Conversation

va-os-commits
Copy link
Contributor

Why I'm doing:

Fixing VULNs
https://snyk.io/vuln/SNYK-JAVA-ORGJSON-5488379
https://snyk.io/vuln/SNYK-JAVA-ORGJSON-5962464

What I'm doing:

Excluding the versions with Vuln and getting the fixed version

Fixes #issue

What type of PR is this:

  • BugFix
  • Feature
  • Enhancement
  • Refactor
  • UT
  • Doc
  • Tool

Does this PR entail a change in behavior?

  • Yes, this PR will result in a change in behavior.
  • No, this PR will not result in a change in behavior.

If yes, please specify the type of change:

  • Interface/UI changes: syntax, type conversion, expression evaluation, display information
  • Parameter changes: default values, similar parameters but with different default values
  • Policy changes: use new policy to replace old one, functionality automatically enabled
  • Feature removed
  • Miscellaneous: upgrade & downgrade compatibility, etc.

Checklist:

  • I have added test cases for my bug fix or my new feature
  • This pr needs user documentation (for new or modified features or behaviors)
    • I have added documentation for my new feature or new function
  • This is a backport pr

Bugfix cherry-pick branch check:

  • I have checked the version labels which the pr will be auto-backported to the target branch
    • 3.5
    • 3.4
    • 3.3
    • 3.2
    • 3.1

@va-os-commits
Fixing vulns
5c16339 
Signed-off-by: Vikas Attiguppa <[email protected]>
@github-actions GitHub Actions
Copy link

[Java-Extensions Incremental Coverage Report]

pass : 0 / 0 (0%)

@github-actions GitHub Actions
Copy link

[FE Incremental Coverage Report]

pass : 0 / 0 (0%)

@github-actions GitHub Actions
Copy link

[BE Incremental Coverage Report]

pass : 0 / 0 (0%)

@Astralidea Astralidea enabled auto-merge (squash) April 27, 2025 01:41
@Astralidea Astralidea merged commit 8fe3bea into StarRocks:main Apr 27, 2025
50 checks passed
@github-actions GitHub Actions
Copy link

@Mergifyio backport branch-3.5

@github-actions GitHub Actions
Copy link

@Mergifyio backport branch-3.4

@github-actions GitHub Actions
Copy link

@Mergifyio backport branch-3.3

@mergify Mergify
Copy link
Contributor

mergify bot commented Apr 27, 2025
edited
Loading

backport branch-3.5

✅ Backports have been created

@mergify Mergify
Copy link
Contributor

mergify bot commented Apr 27, 2025
edited
Loading

backport branch-3.4

✅ Backports have been created

@mergify Mergify
Copy link
Contributor

mergify bot commented Apr 27, 2025
edited
Loading

backport branch-3.3

✅ Backports have been created

mergify bot pushed a commit that referenced this pull request Apr 27, 2025
@va-os-commits @mergify
[Enhancement] Fixing Vulnerability (#58425)
56dbe7b 
Signed-off-by: Vikas Attiguppa <[email protected]>
(cherry picked from commit 8fe3bea)
mergify bot pushed a commit that referenced this pull request Apr 27, 2025
@va-os-commits @mergify
[Enhancement] Fixing Vulnerability (#58425)
41e40ba 
Signed-off-by: Vikas Attiguppa <[email protected]>
(cherry picked from commit 8fe3bea)
This was referenced Apr 27, 2025
Merged
Merged
mergify bot pushed a commit that referenced this pull request Apr 27, 2025
@va-os-commits @mergify
[Enhancement] Fixing Vulnerability (#58425)
65665bf 
Signed-off-by: Vikas Attiguppa <[email protected]>
(cherry picked from commit 8fe3bea)
@mergify mergify bot mentioned this pull request Apr 27, 2025
Merged
24 tasks
wanpengfei-git pushed a commit that referenced this pull request Apr 27, 2025
@mergify @va-os-commits
[Enhancement] Fixing Vulnerability (backport #58425) (#58430)
c69bd40 
Signed-off-by: Vikas Attiguppa <[email protected]>
Co-authored-by: Vikas Attiguppa <[email protected]>
wanpengfei-git pushed a commit that referenced this pull request Apr 27, 2025
@mergify @va-os-commits
[Enhancement] Fixing Vulnerability (backport #58425) (#58431)
bf5e398 
Signed-off-by: Vikas Attiguppa <[email protected]>
Co-authored-by: Vikas Attiguppa <[email protected]>
wanpengfei-git pushed a commit that referenced this pull request Apr 27, 2025
@mergify @va-os-commits
[Enhancement] Fixing Vulnerability (backport #58425) (#58432)
9036fec 
Signed-off-by: Vikas Attiguppa <[email protected]>
Co-authored-by: Vikas Attiguppa <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Astralidea Astralidea Astralidea approved these changes

@alvin-celerdata alvin-celerdata alvin-celerdata approved these changes

Assignees

@va-os-commits va-os-commits

Labels
3.3-merged 3.4-merged 3.5-merged
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@va-os-commits @Astralidea @alvin-celerdata