You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@pulsar.apache.org by GitBox <gi...@apache.org> on 2022/03/09 21:00:51 UTC

[GitHub] [pulsar] nicoloboschi edited a comment on pull request #14630: [owasp] Suppress ZooKeeper 3.8.0 vulnerabilities

nicoloboschi edited a comment on pull request #14630:
URL: https://github.com/apache/pulsar/pull/14630#issuecomment-1063366145


   I checked and ZK doesn't contain the mentioned libraries. I don't know how it is the process for that but is a ZooKeeper problem. 
   I will highlight the problem to the ZooKeeper maintainers (or @eolivelli I'll let you proceed if you want)
   
   For now I think we can keep the specific vulnerabilities; actually they are wrong (at a first glance at the ZK repo) so it makes sense to suppress them. btw they are already suppressed now, this will unblock the CI 


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@pulsar.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org