[
https://issues.apache.org/jira/browse/OOZIE-3689?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Janos Makai updated OOZIE-3689:
---
Description:
Currently usages of `commons-httpclient` can be found `TestHAShareLibService`'s
unit test, however, `commons-httpclient` is in EOL state.
Oozie at this moment does not pull it in directly, but used from a transitive
dependency.
The goal of this ticket is to modify the test inside `TestHAShareLibService`
not to use `commons-httpclient`.
NOTE: this change only introduces a unit test change and does not contains
production change.
was:
Currently usages of `commons-httpclient` can be found `TestHAShareLibService`'s
unit test, however, `commons-httpclient` is in EOL state and has CVE issue
(CVE-2012-5783).
Oozie at this moment does not pull it in directly, but used from a transitive
dependency.
The goal of this ticket is to modify the test inside `TestHAShareLibService`
not to use `commons-httpclient`.
> Remove usage of commons-httpclient due to EOL
> -
>
> Key: OOZIE-3689
> URL: https://issues.apache.org/jira/browse/OOZIE-3689
> Project: Oozie
> Issue Type: Improvement
>Affects Versions: 5.2.1
>Reporter: Janos Makai
>Assignee: Janos Makai
>Priority: Major
> Attachments: OOZIE-3689-001.patch
>
>
> Currently usages of `commons-httpclient` can be found
> `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL
> state.
> Oozie at this moment does not pull it in directly, but used from a transitive
> dependency.
> The goal of this ticket is to modify the test inside `TestHAShareLibService`
> not to use `commons-httpclient`.
> NOTE: this change only introduces a unit test change and does not contains
> production change.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
