compuguy commented on PR #21795: URL: https://github.com/apache/pulsar/pull/21795#issuecomment-1869768068
> Add related security [3.0.2 and 3.1.1 has 3 fixable security vulnerabilities](https://github.com/apache/pulsar/issues/21457) with Trino, it's hard to upgrade from 368 to 430 That's what I thought. I honestly had a hard time going through the change logs to *attempt* to find where the vulnerabilities are fixed. Update on https://github.com/apache/pulsar/issues/21457, I believe Trino only adds two vulnerabilities. I *think* CVE-2023-0833 doesn't apply to Trino and Pulsar respectively. > We are users of Pulsar-SQL (although I also feel that active users are not many). > > And now there are still some [issues](https://github.com/apache/pulsar/pulls?q=is%3Apr+is%3Aopen+sort%3Aupdated-desc+author%3AcrossoverJie+sql) waiting to be fixed. I hope it can be split into separate repositories so that these issues can continue to be fixed. We had one of our Tenants ask about Pulsar SQL functionality, but we came to the conclusion it wasn't worth the effort adding Trino to our current Pulsar deployments. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
