AnmolSun opened a new issue, #15651: URL: https://github.com/apache/druid/issues/15651
### Description Druid still depends on Netty3 which has vulnerabilities, such as [CVE-2023-44487](https://nvd.nist.gov/vuln/detail/CVE-2023-44487). Certain downstream applications such as Hive are unable to completely remove the netty3 dependencies due to being dependent on druid. Please ref [HIVE-25013](https://issues.apache.org/jira/browse/HIVE-25013). Druid should remove its dependency on Netty3. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
