[ https://issues.apache.org/jira/browse/HADOOP-18497?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17619984#comment-17619984 ]
ASF GitHub Bot commented on HADOOP-18497: ----------------------------------------- Hexiaoqiao commented on PR #5041: URL: https://github.com/apache/hadoop/pull/5041#issuecomment-1283409872 @steveloughran Thanks for push this PR forward. > trunk commit doesn't state what version was upgraded too Agree, we should state version when upgrade dependencies. + I think it is good practice to modify PR and issue title also to keep it same as commit message. > needs a newline between title and body to stop various tools joining them Sorry I did not get this information. IIUC, you mentioned here is 'Contributed by ***.', right? If that, this format has kept for a long long while although it did not state clearly at 'HowToCommit' guide[1]. I have no idea if we should norm it. For me both of them are good. Thanks. [1] https://cwiki.apache.org/confluence/display/HADOOP2/HowToCommit > Upgrade commons-text version to fix CVE-2022-42889 > -------------------------------------------------- > > Key: HADOOP-18497 > URL: https://issues.apache.org/jira/browse/HADOOP-18497 > Project: Hadoop Common > Issue Type: Improvement > Reporter: Xiaoqiao He > Assignee: PJ Fanning > Priority: Major > Labels: pull-request-available > Fix For: 3.4.0, 3.3.5, 3.2.5 > > > Upgrade commons-text version to fix CVE-2022-42889. -- This message was sent by Atlassian Jira (v8.20.10#820010) --------------------------------------------------------------------- To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org