slfan1989 commented on PR #7497: URL: https://github.com/apache/hadoop/pull/7497#issuecomment-2765184427
> @slfan1989 May I ask if we could prioritize merging the upgrade from JUnit 4 to JUnit 5 a bit sooner. The reason is that grizzly-http is pulling in [CVE-2017-1000028](https://github.com/advisories/GHSA-w76g-qg26-9xhh). It is necessary to address this and mitigate the risk. Please let me know your thoughts—really appreciate your help!. @susheelgupta7 Thank you for your continued attention to this issue! Currently, only the yarn-router module and some code related to the hadoop-common module remain to be upgraded. I will make every effort to complete this upgrade within this week. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
