[HBASE-22130] [hbase-thirdparty] Upgrade thirdparty dependencies - ASF JIRA

XML

Word

Printable

JSON

Release Note:

Hide
Made following upgrades:

gson 2.8.1 -> 2.8.5
guava 22.0 -> 27.1-jre
pb 3.5.1 -> 3.7.0
netty 4.1.17 -> 4.1.34
commons-collections4 4.1 -> 4.3

Updated apache parent pom from 18 to 21 and misc plugins.

Show
Made following upgrades: gson 2.8.1 -> 2.8.5 guava 22.0 -> 27.1-jre pb 3.5.1 -> 3.7.0 netty 4.1.17 -> 4.1.34 commons-collections4 4.1 -> 4.3 Updated apache parent pom from 18 to 21 and misc plugins.

First guava has a CVE so we need to upgrade to at least 26.0, better to the newest 27.1.

And we can also upgrade the other dependencies to the newest version at the same time.

1.	[hbase-thirdparty] Push out 2.2.0 release		Resolved	Michael Stack
2.	Move 2.2.0 on to hbase-thirdparty-2.2.0		Resolved	Michael Stack