Uploaded image for project: 'Flink'
  1. Flink
  2. FLINK-33408

Bump the snakeyaml from 1.33 to 2.0 to fix the container vulnerability.

    XMLWordPrintableJSON

Details

    Description

      Fix the container vulnerability in CVE-2022-1471 by upgrade the SnakeYaml dependency version in flink-kubernetes module.

      Upgrade the Kubernetes Client from 6.6.2 to 6.7.0, thereby upgrading the version of snakeyaml, which the Kubernetes Client indirectly depends on, from 1.33 to 2.0.

      Attachments

        Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. FLINK-31815 Fixing the container vulnerability by upgrade the SnakeYaml Maven dependency

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. FLINK-31997 Update to Fabric8 6.5.1+ in flink-kubernetes

          • Major - Major loss of function.
          • Closed
          links to

          Web Link GitHub Pull Request #23631

          Activity

            People

              Unassigned Unassigned
              danielchow Zhou Shijie
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: