You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@flink.apache.org by "snuyanzin (via GitHub)" <gi...@apache.org> on 2023/04/19 16:28:05 UTC

[GitHub] [flink] snuyanzin opened a new pull request, #22430: [FLINK-31859][build] Update cyclonedx-maven-plugin from 2.7.3 to 2.7.7

snuyanzin opened a new pull request, #22430:
URL: https://github.com/apache/flink/pull/22430

   
   ## What is the purpose of the change
   
   The PR updates cyclonedx-maven-plugin
   
   there are at least a couple of issues fixing by this update
   1. cyclonedx-maven-plugin depends on `cyclonedx-core-java` 7.2.1 which depends on `jackson-dataformat-xml` and `jackson-databind` 2.14.0 containig memory issue https://github.com/FasterXML/jackson-databind/issues/3665
   2. current version has issues with other locales while pom reading and leads to lots of traces in logs e.g. after `mvn clean verify` for flink-core
   ```
   [ERROR] An error occurred attempting to read POM
   org.codehaus.plexus.util.xml.pull.XmlPullParserException: UTF-8 BOM plus xml decl of ISO-8859-1 is incompatible (position: START_DOCUMENT seen <?xml version="1.0" encoding="ISO-8859-1"... @1:42) 
       at org.codehaus.plexus.util.xml.pull.MXParser.parseXmlDeclWithVersion (MXParser.java:3423)
       at org.codehaus.plexus.util.xml.pull.MXParser.parseXmlDecl (MXParser.java:3345)
       at org.codehaus.plexus.util.xml.pull.MXParser.parsePI (MXParser.java:3197)
       at org.codehaus.plexus.util.xml.pull.MXParser.parseProlog (MXParser.java:1828)
       at org.codehaus.plexus.util.xml.pull.MXParser.nextImpl (MXParser.java:1757)
       at org.codehaus.plexus.util.xml.pull.MXParser.next (MXParser.java:1375)
       at org.apache.maven.model.io.xpp3.MavenXpp3Reader.read (MavenXpp3Reader.java:3940)
       at org.apache.maven.model.io.xpp3.MavenXpp3Reader.read (MavenXpp3Reader.java:612)
       at org.apache.maven.model.io.xpp3.MavenXpp3Reader.read (MavenXpp3Reader.java:627)
       at org.cyclonedx.maven.BaseCycloneDxMojo.readPom (BaseCycloneDxMojo.java:759)
       at org.cyclonedx.maven.BaseCycloneDxMojo.readPom (BaseCycloneDxMojo.java:746)
   ```
   
   ## Verifying this change
   
   This change is a trivial rework / code cleanup without any test coverage.
   
   
   ## Does this pull request potentially affect one of the following parts:
   
     - Dependencies (does it add or upgrade a dependency): (yes )
     - The public API, i.e., is any changed class annotated with `@Public(Evolving)`: ( no)
     - The serializers: ( no )
     - The runtime per-record code paths (performance sensitive): ( no)
     - Anything that affects deployment or recovery: JobManager (and its components), Checkpointing, Kubernetes/Yarn, ZooKeeper: ( no)
     - The S3 file system connector: ( no )
   
   ## Documentation
   
     - Does this pull request introduce a new feature? ( no)
     - If yes, how is the feature documented? (not applicable )
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@flink.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [flink] snuyanzin commented on pull request #22430: [FLINK-31859][build] Update cyclonedx-maven-plugin from 2.7.3 to 2.7.7

Posted by "snuyanzin (via GitHub)" <gi...@apache.org>.

snuyanzin commented on PR #22430:
URL: https://github.com/apache/flink/pull/22430#issuecomment-1515268772

   Thanks for having a look!


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@flink.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [flink] flinkbot commented on pull request #22430: [FLINK-31859][build] Update cyclonedx-maven-plugin from 2.7.3 to 2.7.7

Posted by "flinkbot (via GitHub)" <gi...@apache.org>.

flinkbot commented on PR #22430:
URL: https://github.com/apache/flink/pull/22430#issuecomment-1515038543

   <!--
   Meta data
   {
     "version" : 1,
     "metaDataEntries" : [ {
       "hash" : "ce6918262baebd49ecf5f3ce0a7edaa38470d57b",
       "status" : "UNKNOWN",
       "url" : "TBD",
       "triggerID" : "ce6918262baebd49ecf5f3ce0a7edaa38470d57b",
       "triggerType" : "PUSH"
     } ]
   }-->
   ## CI report:
   
   * ce6918262baebd49ecf5f3ce0a7edaa38470d57b UNKNOWN
   
   <details>
   <summary>Bot commands</summary>
     The @flinkbot bot supports the following commands:
   
    - `@flinkbot run azure` re-run the last Azure build
   </details>


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@flink.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [flink] snuyanzin merged pull request #22430: [FLINK-31859][build] Update cyclonedx-maven-plugin from 2.7.3 to 2.7.7

Posted by "snuyanzin (via GitHub)" <gi...@apache.org>.

snuyanzin merged PR #22430:
URL: https://github.com/apache/flink/pull/22430


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@flink.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org