You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@spark.apache.org by vinodh palanisamy <vi...@gmail.com> on 2022/02/24 10:15:55 UTC

DataTables 1.10.20 reported vulnerable in spark-core_2.13:3.2.1

Hi Team,
          We are using spark-core_2.13:3.2.1 in our project. Where in that
version Blackduck scan reports the below the js files as vulnerable.

dataTables.bootstrap4.1.10.20.min.js
jquery.dataTables..1.10.20.min.js

Please let me know if this can be fixed in my project or Datatables version
used in the spark-core would be updated to a non vulnerable version.

Regards
Vinodh Palaniswamy

Re: DataTables 1.10.20 reported vulnerable in spark-core_2.13:3.2.1

Posted by Sean Owen <sr...@gmail.com>.

What is the vulnerability and does it affect Spark? what is the remediation?
Can you try updating these and open a pull request if it works?

On Thu, Feb 24, 2022 at 7:28 AM vinodh palanisamy <vi...@gmail.com>
wrote:

> Hi Team,
>           We are using spark-core_2.13:3.2.1 in our project. Where in that
> version Blackduck scan reports the below the js files as vulnerable.
>
> dataTables.bootstrap4.1.10.20.min.js
> jquery.dataTables..1.10.20.min.js
>
> Please let me know if this can be fixed in my project or Datatables
> version used in the spark-core would be updated to a non vulnerable version.
>
> Regards
> Vinodh Palaniswamy
>
>