Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security fixes 26072024 - This will resolve some critical vulnerabilities present in springboot, kafka, kafka-client etc. #4473

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Security fixes 26072024 - This will resolve some critical vulnerabilities present in springboot, kafka, kafka-client etc. #4473

wants to merge 3 commits into from

Conversation

patilk234
Copy link

  • Breaking change? (if so, please describe the impact and migration path for existing application instances)

What changes did you make? (Give an overview)

Is there anything you'd like reviewers to focus on?

How Has This Been Tested? (put an "x" (case-sensitive!) next to an item)

  • No need to
  • Manually (please, describe, if necessary)
  • Unit checks
  • Integration checks
  • Covered by existing automation

Checklist (put an "x" (case-sensitive!) next to all the items, otherwise the build will fail)

  • I have performed a self-review of my own code
  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation (e.g. ENVIRONMENT VARIABLES)
  • My changes generate no new warnings (e.g. Sonar is happy)
  • I have added tests that prove my fix is effective or that my feature works
  • New and existing unit tests pass locally with my changes
  • Any dependent changes have been merged

Check out Contributing and Code of Conduct

A picture of a cute animal (not mandatory but encouraged)

@patilk234
Upgraded springboot & kafka-clients version
2f2c7b1 
This bump will resolve security vulnerabilities present in kafka-client 3.5.0 and tomcat 10.1.12 and snappy-java 1.1.10.0
@patilk234
Upgraded aws-msk-iam-auth to 2.2.0
d1d9881 
Upgrading aws-msk-iam-auth will resolve vulns present in 1.1.7
@patilk234
Upgrade kafka to 3.6.1
828765e 
Upgrading kafka version to 3.6.1 will resolve security vulns from 3.3.1
@patilk234 patilk234 requested review from a team as code owners July 26, 2024 08:00
github-actions[bot]
github-actions bot reviewed Jul 26, 2024
View reviewed changes
Copy link

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hello there patilk234! 👋

Thank you and congrats 🎉 for opening your first PR on this project! ✨ 💖

We will try to review it soon!

@germanosin
Copy link
Contributor

@patilk234 thanks for your PR. Me and @Haarolean no longer support this repo. Please use https://github.com/kafbat/kafka-ui/

@patilk234
Copy link
Author

patilk234 commented Jul 26, 2024 via email

@Haarolean
Copy link
Contributor

@patilk234 thanks for the kind words, please raise a PR there :)

@patilk234
Copy link
Author

patilk234 commented Jul 26, 2024 via email

@harshita-gupta
Copy link

@germanosin and @Haarolean, is this repo no longer actively maintained at all, or have the maintainers changed?

If the repo isn't actively maintained, it'd be great to update the README.md file to make that obvious.

@Haarolean
Copy link
Contributor

@harshita-gupta #4255 -> https://github.com/kafbat/kafka-ui

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions GitHub Actions github-actions left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@patilk234 @germanosin @Haarolean @harshita-gupta