[GitHub] [ranger] chrajeshbabu opened a new pull request, #207: RANGER-4029 Ranger cannot build with HBase 2.5.x versions because pre…
chrajeshbabu opened a new pull request, #207: URL: https://github.com/apache/ranger/pull/207 …Balance coprocessor hook syntax changed in HBASE-26147 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] pan3793 commented on a diff in pull request #186: RANGER-3968:The plugin cannot download the latest policy
pan3793 commented on code in PR #186: URL: https://github.com/apache/ranger/pull/186#discussion_r1062421665 ## security-admin/src/main/resources/conf.dist/ranger-admin-default-site.xml: ## @@ -681,4 +681,8 @@ ranger.allow.kerberos.auth.login.browser false + + ranger.policy.retriever.transaction.timeout Review Comment: What's the time unit? Could you please follow the existing configuration key naming style? `ranger.resource.lookup.timeout.value.in.ms` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] closed pull request #178: Bump jettison from 1.1 to 1.5.1 in /plugin-schema-registry
dependabot[bot] closed pull request #178: Bump jettison from 1.1 to 1.5.1 in /plugin-schema-registry URL: https://github.com/apache/ranger/pull/178 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] commented on pull request #178: Bump jettison from 1.1 to 1.5.1 in /plugin-schema-registry
dependabot[bot] commented on PR #178: URL: https://github.com/apache/ranger/pull/178#issuecomment-1369232978 Superseded by #206. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #206: Bump jettison from 1.1 to 1.5.2 in /plugin-schema-registry
dependabot[bot] opened a new pull request, #206: URL: https://github.com/apache/ranger/pull/206 Bumps [jettison](https://github.com/jettison-json/jettison) from 1.1 to 1.5.2. Release notes Sourced from https://github.com/jettison-json/jettison/releases";>jettison's releases. Jettison 1.5.2 What's Changed Bump woodstox-core from 6.2.8 to 6.4.0 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/jettison-json/jettison/pull/51";>jettison-json/jettison#51 Fixing StackOverflow error by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/53";>jettison-json/jettison#53 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.1...jettison-1.5.2";>https://github.com/jettison-json/jettison/compare/jettison-1.5.1...jettison-1.5.2 Jettison 1.5.1 What's Changed Stack Overflow fix on malformed JSON by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/48";>jettison-json/jettison#48 Prevent infinite loop when a /* comment is not terminated by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/49";>jettison-json/jettison#49 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1";>https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1 Commits https://github.com/jettison-json/jettison/commit/6dc73a07ac47c7e3b4c7d041761fbc11aee2eb50";>6dc73a0 [maven-release-plugin] prepare release jettison-1.5.2 https://github.com/jettison-json/jettison/commit/19ae19ff57d00dbfa6f6c3af4fc4cb14fb5ca2df";>19ae19f Fixing StackOverflow error https://github.com/jettison-json/jettison/commit/325b51b36982b5ddfb10d76d2809ec422e9de0b1";>325b51b Bump woodstox-core from 6.2.8 to 6.4.0 https://github.com/jettison-json/jettison/commit/81d3786242c3c7f68eead911b432a81c7f24fa0b";>81d3786 [maven-release-plugin] prepare for next development iteration https://github.com/jettison-json/jettison/commit/bdb3982aaea184c2143e41981e33877c2fd66292";>bdb3982 [maven-release-plugin] prepare release jettison-1.5.1 https://github.com/jettison-json/jettison/commit/1268b7558bad9b989687009a094466b64d4da533";>1268b75 Prevent infinite loop when a /* comment is not terminated https://github.com/jettison-json/jettison/commit/cff9f2814ec8ae573e38f38abed039311bb7bfda";>cff9f28 Create codeql-analysis.yml https://github.com/jettison-json/jettison/commit/395f8625bcf688743872c8e7f59360d372e77811";>395f862 Stack Overflow fix on malformed JSON https://github.com/jettison-json/jettison/commit/a5d2223bafd4c5ec37723533fa5c4066ead4eaaa";>a5d2223 [maven-release-plugin] prepare for next development iteration https://github.com/jettison-json/jettison/commit/e1bf5293d10af3ebfcd8763eb51a20a659b9047c";>e1bf529 [maven-release-plugin] prepare release jettison-1.5.0 Additional commits viewable in https://github.com/jettison-json/jettison/compare/jettison-1.1...jettison-1.5.2";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more fo
[GitHub] [ranger] dependabot[bot] opened a new pull request, #205: Bump json5 from 2.2.0 to 2.2.3 in /security-admin/src/main/webapp/react-webapp
dependabot[bot] opened a new pull request, #205: URL: https://github.com/apache/ranger/pull/205 Bumps [json5](https://github.com/json5/json5) from 2.2.0 to 2.2.3. Release notes Sourced from https://github.com/json5/json5/releases";>json5's releases. v2.2.3 Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (https://github-redirect.dependabot.com/json5/json5/issues/299";>#299) v2.2.2 Fix: Properties with the name __proto__ are added to objects and arrays. (https://github-redirect.dependabot.com/json5/json5/issues/199";>#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (https://github-redirect.dependabot.com/json5/json5/issues/295";>#295). v2.2.1 Fix: Removed dependence on minimist to patch CVE-2021-44906. (https://github-redirect.dependabot.com/json5/json5/issues/266";>#266) Changelog Sourced from https://github.com/json5/json5/blob/main/CHANGELOG.md";>json5's changelog. v2.2.3 [https://github.com/json5/json5/tree/v2.2.3";>code, https://github.com/json5/json5/compare/v2.2.2...v2.2.3";>diff] Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (https://github-redirect.dependabot.com/json5/json5/issues/299";>#299) v2.2.2 [https://github.com/json5/json5/tree/v2.2.2";>code, https://github.com/json5/json5/compare/v2.2.1...v2.2.2";>diff] Fix: Properties with the name __proto__ are added to objects and arrays. (https://github-redirect.dependabot.com/json5/json5/issues/199";>#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (https://github-redirect.dependabot.com/json5/json5/issues/295";>#295). v2.2.1 [https://github.com/json5/json5/tree/v2.2.1";>code, https://github.com/json5/json5/compare/v2.2.0...v2.2.1";>diff] Fix: Removed dependence on minimist to patch CVE-2021-44906. (https://github-redirect.dependabot.com/json5/json5/issues/266";>#266) Commits https://github.com/json5/json5/commit/c3a75242772a5026a49c4017a16d9b3543b62776";>c3a7524 2.2.3 https://github.com/json5/json5/commit/94fd06d82eeed225fa172f6fb2ca27375cbd2e39";>94fd06d docs: update CHANGELOG for v2.2.3 https://github.com/json5/json5/commit/3b8cebf0c474a8b20c78bd75c89cca0c4dce84ce";>3b8cebf docs(security): use GitHub security advisories https://github.com/json5/json5/commit/f0fd9e194dde282caff114a110f4fac635f3a62c";>f0fd9e1 docs: publish a security policy https://github.com/json5/json5/commit/6a91a05fffeda16ff6b3b5008b6b340d42d31ec0";>6a91a05 docs(template): bug -> bug report https://github.com/json5/json5/commit/14f8cb186e8abdfaccf6527171da7b1224374650";>14f8cb1 2.2.2 https://github.com/json5/json5/commit/10cc7ca9169b59c5e0f5afc03dbd870cd06bcc46";>10cc7ca docs: update CHANGELOG for v2.2.2 https://github.com/json5/json5/commit/7774c1097993bc3ce9f0ac4b722a32bf7d6871c8";>7774c10 fix: add proto to objects and arrays https://github.com/json5/json5/commit/edde30abd8b22facf2c06c72586b9f6edf12700d";>edde30a Readme: slight tweak to intro https://github.com/json5/json5/commit/97286f8bd542c89dcee096bc05dd28ed2dfc1e16";>97286f8 Improve example in readme Additional commits viewable in https://github.com/json5/json5/compare/v2.2.0...v2.2.3";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot
[GitHub] [ranger] dependabot[bot] opened a new pull request, #204: Bump express from 4.17.2 to 4.18.2 in /security-admin/src/main/webapp/react-webapp
dependabot[bot] opened a new pull request, #204: URL: https://github.com/apache/ranger/pull/204 Bumps [express](https://github.com/expressjs/express) from 4.17.2 to 4.18.2. Release notes Sourced from https://github.com/expressjs/express/releases";>express's releases. 4.18.2 Fix regression routing a large stack in a single route deps: body-parser@1.20.1 deps: qs@6.11.0 perf: remove unnecessary object clone deps: qs@6.11.0 4.18.1 Fix hanging on large stack of sync routes 4.18.0 Add "root" option to res.download Allow options without filename in res.download Deprecate string and non-integer arguments to res.status Fix behavior of null/undefined as maxAge in res.cookie Fix handling very large stacks of sync middleware Ignore Object.prototype values in settings through app.set/app.get Invoke default with same arguments as types in res.format Support proper 205 responses using res.send Use http-errors for res.format error deps: body-parser@1.20.0 Fix error message for json parse whitespace in strict Fix internal error when inflated body exceeds limit Prevent loss of async hooks context Prevent hanging when request already read deps: depd@2.0.0 deps: http-errors@2.0.0 deps: on-finished@2.4.1 deps: qs@6.10.3 deps: raw-body@2.5.1 deps: cookie@0.5.0 Add priority option Fix expires option to reject invalid dates deps: depd@2.0.0 Replace internal eval usage with Function constructor Use instance methods on process to check for listeners deps: finalhandler@1.2.0 Remove set content headers that break response deps: on-finished@2.4.1 deps: statuses@2.0.1 deps: on-finished@2.4.1 Prevent loss of async hooks context deps: qs@6.10.3 deps: send@0.18.0 Fix emitted 416 error missing headers property Limit the headers removed for 304 response deps: depd@2.0.0 deps: destroy@1.2.0 deps: http-errors@2.0.0 deps: on-finished@2.4.1 ... (truncated) Changelog Sourced from https://github.com/expressjs/express/blob/master/History.md";>express's changelog. 4.18.2 / 2022-10-08 Fix regression routing a large stack in a single route deps: body-parser@1.20.1 deps: qs@6.11.0 perf: remove unnecessary object clone deps: qs@6.11.0 4.18.1 / 2022-04-29 Fix hanging on large stack of sync routes 4.18.0 / 2022-04-25 Add "root" option to res.download Allow options without filename in res.download Deprecate string and non-integer arguments to res.status Fix behavior of null/undefined as maxAge in res.cookie Fix handling very large stacks of sync middleware Ignore Object.prototype values in settings through app.set/app.get Invoke default with same arguments as types in res.format Support proper 205 responses using res.send Use http-errors for res.format error deps: body-parser@1.20.0 Fix error message for json parse whitespace in strict Fix internal error when inflated body exceeds limit Prevent loss of async hooks context Prevent hanging when request already read deps: depd@2.0.0 deps: http-errors@2.0.0 deps: on-finished@2.4.1 deps: qs@6.10.3 deps: raw-body@2.5.1 deps: cookie@0.5.0 Add priority option Fix expires option to reject invalid dates deps: depd@2.0.0 Replace internal eval usage with Function constructor Use instance methods on process to check for listeners deps: finalhandler@1.2.0 Remove set content headers that break response deps: on-finished@2.4.1 deps: statuses@2.0.1 deps: on-finished@2.4.1 Prevent loss of async hooks context deps: qs@6.10.3 deps: send@0.18.0 ... (truncated) Commits https://github.com/expressjs/express/commit/8368dc178af16b91b576c4c1d135f701a0007e5d";>8368dc1 4.18.2 https://github.com/expressjs/express/commit/61f40491222dbede653b9938e6a4676f187aab44";>61f4049 docs: replace Freenode with Libera Chat https://github.com/expressjs/express/commit/bb7907b932afe3a19236a642f6054b6c8f7349a0";>bb7907b build: Node.js@18.10 https://github.com/expressjs/express/commit/f56ce73186e885a938bfdb3d3d1005a58e6ae12b";>f56ce73 build: supertest@6.3.0 https://github.com/expressjs/express/commit/24b3dc551670ac4fb0cd5a2bd5ef643c9525e60f";>24b3dc5 deps: qs@6.11.0 https://github.com/expressjs/express/commit/689d175b8b39d8860b81d723233fb83d15201827";>689d175 deps: body-parser@1.20.1 https://github.com/expressjs/express/commit/340be0f79afb9b3176afb76235aa7f92acbd5050";>340be0f build: eslint@8.24.0 https://github.com/expressjs/express/commit/33e8dc303af9277f8a7e4f46abfdcb5e72f6797b";>33e8dc3 docs: use Node.js name style https://github.com/expressjs/express/commit/644
[GitHub] [ranger] dependabot[bot] opened a new pull request, #202: Bump loader-utils from 1.4.0 to 1.4.2 in /security-admin/src/main/webapp/react-webapp
dependabot[bot] opened a new pull request, #202: URL: https://github.com/apache/ranger/pull/202 Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.4.0 to 1.4.2. Release notes Sourced from https://github.com/webpack/loader-utils/releases";>loader-utils's releases. v1.4.2 https://github.com/webpack/loader-utils/compare/v1.4.1...v1.4.2";>1.4.2 (2022-11-11) Bug Fixes ReDoS problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/226";>#226) (https://github.com/webpack/loader-utils/commit/17cbf8fa8989c1cb45bdd2997aa524729475f1fa";>17cbf8f) v1.4.1 https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.1";>1.4.1 (2022-11-07) Bug Fixes security problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/220";>#220) (https://github.com/webpack/loader-utils/commit/4504e34c4796a5836ef70458327351675aed48a5";>4504e34) Changelog Sourced from https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md";>loader-utils's changelog. https://github.com/webpack/loader-utils/compare/v1.4.1...v1.4.2";>1.4.2 (2022-11-11) Bug Fixes ReDoS problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/226";>#226) (https://github.com/webpack/loader-utils/commit/17cbf8fa8989c1cb45bdd2997aa524729475f1fa";>17cbf8f) https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.1";>1.4.1 (2022-11-07) Bug Fixes security problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/220";>#220) (https://github.com/webpack/loader-utils/commit/4504e34c4796a5836ef70458327351675aed48a5";>4504e34) Commits https://github.com/webpack/loader-utils/commit/331ad5067d9a1a7b8d646692e6959639969210d1";>331ad50 chore(release): 1.4.2 https://github.com/webpack/loader-utils/commit/17cbf8fa8989c1cb45bdd2997aa524729475f1fa";>17cbf8f fix: ReDoS problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/226";>#226) https://github.com/webpack/loader-utils/commit/8f082b39f6903929f30fe29dab34f4d9c7ef070a";>8f082b3 chore(release): 1.4.1 https://github.com/webpack/loader-utils/commit/4504e34c4796a5836ef70458327351675aed48a5";>4504e34 fix: security problem (https://github-redirect.dependabot.com/webpack/loader-utils/issues/220";>#220) See full diff in https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.2";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/ranger/n
[GitHub] [ranger] dependabot[bot] opened a new pull request, #203: Bump minimatch from 3.0.4 to 3.1.2 in /security-admin/src/main/webapp/react-webapp
dependabot[bot] opened a new pull request, #203: URL: https://github.com/apache/ranger/pull/203 Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2. Commits https://github.com/isaacs/minimatch/commit/699c459443a6bd98f5b28197978f76e7f71467ac";>699c459 3.1.2 https://github.com/isaacs/minimatch/commit/2f2b5ff1bb1b6a01f4404f7e475f0a2cba578ab7";>2f2b5ff fix: trim pattern https://github.com/isaacs/minimatch/commit/25d7c0d09c47063c9b0d2ace17ef8e951d90eccc";>25d7c0d 3.1.1 https://github.com/isaacs/minimatch/commit/55dda291dfb595bd11b4edb19b45dd98eda76de0";>55dda29 fix: treat nocase:true as always having magic https://github.com/isaacs/minimatch/commit/5e1fb8dd2bb78c0ae22101b9229fac4c76ef039e";>5e1fb8d 3.1.0 https://github.com/isaacs/minimatch/commit/f8145c54f34075069f4a23cb214d871da4cd4006";>f8145c5 Add 'allowWindowsEscape' option https://github.com/isaacs/minimatch/commit/570e8b1aef6c9e823a824aa0b9be10db43857cd7";>570e8b1 add publishConfig for v3 publishes https://github.com/isaacs/minimatch/commit/5b7cd3372be253759fb4d865eb3f38f189a5fcdf";>5b7cd33 3.0.6 https://github.com/isaacs/minimatch/commit/20b4b562830680867feb75f9c635aca08e5c86ff";>20b4b56 [fix] revert all breaking syntax changes https://github.com/isaacs/minimatch/commit/2ff038852ec03e85e60e0eb333005c680ac8a543";>2ff0388 document, expose, and test 'partial:true' option Additional commits viewable in https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/ranger/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #201: Bump qs from 6.9.6 to 6.9.7 in /security-admin/src/main/webapp/react-webapp
dependabot[bot] opened a new pull request, #201: URL: https://github.com/apache/ranger/pull/201 Bumps [qs](https://github.com/ljharb/qs) from 6.9.6 to 6.9.7. Changelog Sourced from https://github.com/ljharb/qs/blob/main/CHANGELOG.md";>qs's changelog. 6.9.7 [Fix] parse: ignore __proto__ keys (https://github-redirect.dependabot.com/ljharb/qs/issues/428";>#428) [Fix] stringify: avoid encoding arrayformat comma when encodeValuesOnly = true (https://github-redirect.dependabot.com/ljharb/qs/issues/424";>#424) [Robustness] stringify: avoid relying on a global undefined (https://github-redirect.dependabot.com/ljharb/qs/issues/427";>#427) [readme] remove travis badge; add github actions/codecov badges; update URLs [Docs] add note and links for coercing primitive values (https://github-redirect.dependabot.com/ljharb/qs/issues/408";>#408) [Tests] clean up stringify tests slightly [meta] fix README.md (https://github-redirect.dependabot.com/ljharb/qs/issues/399";>#399) Revert "[meta] ignore eclint transitive audit warning" [actions] backport actions from main [Dev Deps] backport updates from main Commits https://github.com/ljharb/qs/commit/4cd003291fe3b347884f797e548b58a12150a0e3";>4cd0032 v6.9.7 https://github.com/ljharb/qs/commit/e799ba57e573a30c14b67c1889c7c04d508b9105";>e799ba5 [Fix] parse: ignore __proto__ keys (https://github-redirect.dependabot.com/ljharb/qs/issues/428";>#428) https://github.com/ljharb/qs/commit/02ca358155297dc68fcc4c2ac312c26e10524e47";>02ca358 [Robustness] stringify: avoid relying on a global undefined (https://github-redirect.dependabot.com/ljharb/qs/issues/427";>#427) https://github.com/ljharb/qs/commit/4a17709e71ae510a7195ff57b969a2bf9cde139f";>4a17709 [Fix] stringify: avoid encoding arrayformat comma when `encodeValuesOnly = ... https://github.com/ljharb/qs/commit/c0e13e9fc80aab01ef777cc06d7411c0df1676a7";>c0e13e9 [readme] remove travis badge; add github actions/codecov badges; update URLs https://github.com/ljharb/qs/commit/4113a5f245987800ef2a8166f809a941661f1542";>4113a5f [Tests] clean up stringify tests slightly https://github.com/ljharb/qs/commit/749a58467c1a28744de66d5193a1a19c079927e0";>749a584 [Docs] add note and links for coercing primitive values (https://github-redirect.dependabot.com/ljharb/qs/issues/408";>#408) https://github.com/ljharb/qs/commit/cce2082f095b29903549ef43bddb509c5ba893c2";>cce2082 [meta] fix README.md (https://github-redirect.dependabot.com/ljharb/qs/issues/399";>#399) https://github.com/ljharb/qs/commit/c44f0c59bb508ef22563ca07d9d3000c742fbee2";>c44f0c5 Revert "[meta] ignore eclint transitive audit warning" https://github.com/ljharb/qs/commit/e6cfd8bda02143678f57a7eb441cca2183620dfc";>e6cfd8b [actions] backport actions from main Additional commits viewable in https://github.com/ljharb/qs/compare/v6.9.6...v6.9.7";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the cu
[GitHub] [ranger] waywtdcc commented on pull request #26: RANGER-2128: Implementation of Ranger Spark SQL plugin
waywtdcc commented on PR #26: URL: https://github.com/apache/ranger/pull/26#issuecomment-1360884445 +1 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] neils-dev opened a new pull request, #200: RANGER-3896: Update Ozone dependency version to latest 1.3.0
neils-dev opened a new pull request, #200: URL: https://github.com/apache/ranger/pull/200 Update ranger ozone plugin package dependencies and package namespace from the older org.apache.hadoop.ozone release 1.0.0 to the latest org.apache.ozone release 1.3.0. Updates affect maven pom build files. Build will latest ozone release 1.3.0 jars. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] LindenChang opened a new pull request, #199: Replace obsolete css style
LindenChang opened a new pull request, #199: URL: https://github.com/apache/ranger/pull/199 Replace obsolete mozilla css style with standard css style. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] deadlove commented on pull request #198: update lucene version to fix audit log throw no suchfield LUCENE_8_5_…
deadlove commented on PR #198: URL: https://github.com/apache/ranger/pull/198#issuecomment-1354326197 using elasticsearch as audit store, when go to audit page will throw ElasticsearchException class init error, because of the lucene version problem, after upgrade the lucene version, this issue resloved. But lucene-spatial has no higher version than 8.4.1 so we keep this as before. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] deadlove opened a new pull request, #198: update lucene version to fix audit log throw no suchfield LUCENE_8_5_…
deadlove opened a new pull request, #198: URL: https://github.com/apache/ranger/pull/198 …1 issue -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #197: Bump certifi from 2022.6.15 to 2022.12.7 in /ranger-tools/src/main/python
dependabot[bot] opened a new pull request, #197: URL: https://github.com/apache/ranger/pull/197 Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.6.15 to 2022.12.7. Commits https://github.com/certifi/python-certifi/commit/9e9e840925d7b8e76c76fdac1fab7e6e88c1c3b8";>9e9e840 2022.12.07 https://github.com/certifi/python-certifi/commit/b81bdb269f1edb791bcd4ec8a9d0c053758f961a";>b81bdb2 2022.09.24 https://github.com/certifi/python-certifi/commit/939a28ffc57b1613770f572b584745c7b6d43e7d";>939a28f 2022.09.14 https://github.com/certifi/python-certifi/commit/aca828a78e73235a513dff9ebc181a47ef7dbf7b";>aca828a 2022.06.15.2 https://github.com/certifi/python-certifi/commit/de0eae12a6d5794a4c1e33052af6717707ce1fcc";>de0eae1 Only use importlib.resources's new files() / Traversable API on Python ≥3.11 ... https://github.com/certifi/python-certifi/commit/b8eb5e9af9143b22b7f651942b393e369ed4c52a";>b8eb5e9 2022.06.15.1 https://github.com/certifi/python-certifi/commit/47fb7ab715965684e035292d2ad3386aabdc4d25";>47fb7ab Fix deprecation warning on Python 3.11 (https://github-redirect.dependabot.com/certifi/python-certifi/issues/199";>#199) https://github.com/certifi/python-certifi/commit/b0b48e059995f455ac1e79b3ad373ad4ef355516";>b0b48e0 fixes https://github-redirect.dependabot.com/certifi/python-certifi/issues/198";>#198 -- update link in license See full diff in https://github.com/certifi/python-certifi/compare/2022.06.15...2022.12.07";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/ranger/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] Hoo199212 commented on pull request #186: RANGER-3968:The plugin cannot download the latest policy
Hoo199212 commented on PR #186: URL: https://github.com/apache/ranger/pull/186#issuecomment-1342329813 @mneethiraj Hi,Ranger cannot completely rely on the stability of the database, so it is necessary to add the timeout, but the timeout needs to be discussed -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #196: Bump qs and body-parser in /security-admin/src/test/javascript
dependabot[bot] opened a new pull request, #196: URL: https://github.com/apache/ranger/pull/196 Bumps [qs](https://github.com/ljharb/qs) and [body-parser](https://github.com/expressjs/body-parser). These dependencies needed to be updated together. Updates `qs` from 6.5.2 to 6.5.3 Changelog Sourced from https://github.com/ljharb/qs/blob/main/CHANGELOG.md";>qs's changelog. 6.5.3 [Fix] parse: ignore __proto__ keys (https://github-redirect.dependabot.com/ljharb/qs/issues/428";>#428) [Fix] utils.merge`: avoid a crash with a null target and a truthy non-array source [Fix] correctly parse nested arrays [Fix] stringify: fix a crash with strictNullHandling and a custom filter/serializeDate (https://github-redirect.dependabot.com/ljharb/qs/issues/279";>#279) [Fix] utils: merge: fix crash when source is a truthy primitive & no options are provided [Fix] when parseArrays is false, properly handle keys ending in [] [Fix] fix for an impossible situation: when the formatter is called with a non-string value [Fix] utils.merge: avoid a crash with a null target and an array source [Refactor] utils: reduce observable [[Get]]s [Refactor] use cached Array.isArray [Refactor] stringify: Avoid arr = arr.concat(...), push to the existing instance (https://github-redirect.dependabot.com/ljharb/qs/issues/269";>#269) [Refactor] parse: only need to reassign the var once [Robustness] stringify: avoid relying on a global undefined (https://github-redirect.dependabot.com/ljharb/qs/issues/427";>#427) [readme] remove travis badge; add github actions/codecov badges; update URLs [Docs] Clean up license text so it’s properly detected as BSD-3-Clause [Docs] Clarify the need for "arrayLimit" option [meta] fix README.md (https://github-redirect.dependabot.com/ljharb/qs/issues/399";>#399) [meta] add FUNDING.yml [actions] backport actions from main [Tests] always use String(x) over x.toString() [Tests] remove nonexistent tape option [Dev Deps] backport from main Commits https://github.com/ljharb/qs/commit/298bfa55d6db00ddea78dd0333509aadf9bb3077";>298bfa5 v6.5.3 https://github.com/ljharb/qs/commit/ed0f5dcbef4b168a8ae299d78b1e4a2e9b1baf1f";>ed0f5dc [Fix] parse: ignore __proto__ keys (https://github-redirect.dependabot.com/ljharb/qs/issues/428";>#428) https://github.com/ljharb/qs/commit/691e739cfa40cd42604dc05a54e6154371a429ab";>691e739 [Robustness] stringify: avoid relying on a global undefined (https://github-redirect.dependabot.com/ljharb/qs/issues/427";>#427) https://github.com/ljharb/qs/commit/1072d57d38a690e1ad7616dced44390bffedcbb2";>1072d57 [readme] remove travis badge; add github actions/codecov badges; update URLs https://github.com/ljharb/qs/commit/12ac1c403aaa04d1a34844f514ed9f9abfb76e64";>12ac1c4 [meta] fix README.md (https://github-redirect.dependabot.com/ljharb/qs/issues/399";>#399) https://github.com/ljharb/qs/commit/0338716b09fdbd4711823eeb0a14e556a2498e7a";>0338716 [actions] backport actions from main https://github.com/ljharb/qs/commit/5639c20ce0a7c1332200a3181339331483e5a3a1";>5639c20 Clean up license text so it’s properly detected as BSD-3-Clause https://github.com/ljharb/qs/commit/51b8a0b1b213596dd1702b837f5e7dec2229793d";>51b8a0b add FUNDING.yml https://github.com/ljharb/qs/commit/45f675936e742d92fac8d4dae5cfc385c576a977";>45f6759 [Fix] fix for an impossible situation: when the formatter is called with a no... https://github.com/ljharb/qs/commit/f814a7f8f2af059f8158f7e4b2bf8b46aeb62cd3";>f814a7f [Dev Deps] backport from main Additional commits viewable in https://github.com/ljharb/qs/compare/v6.5.2...v6.5.3";>compare view Updates `body-parser` from 1.18.3 to 1.20.1 Release notes Sourced from https://github.com/expressjs/body-parser/releases";>body-parser's releases. 1.20.0 Fix error message for json parse whitespace in strict Fix internal error when inflated body exceeds limit Prevent loss of async hooks context Prevent hanging when request already read deps: depd@2.0.0 Replace internal eval usage with Function constructor Use instance methods on process to check for listeners deps: http-errors@2.0.0 deps: depd@2.0.0 deps: statuses@2.0.1 deps: on-finished@2.4.1 deps: qs@6.10.3 deps: raw-body@2.5.1 deps: http-errors@2.0.0 1.19.2 deps: bytes@3.1.2 deps: qs@6.9.7 Fix handling of __proto__ keys deps: raw-body@2.4.3 deps: bytes@3.1.2 1.19.1 deps: bytes@3.1.1 deps: http-errors@1.8.1 deps: inherits@2.0.4 deps: toidentifier@1.0.1 deps: setprototypeof@1.2.0 deps: qs@6.9.6 deps: raw-body@2.4.2 deps: bytes@3.1.1 deps: http-errors@1.8.1 deps: safe-buffer@5.2.1 deps: type-is@~1.6.18 1.19.0 deps: bytes@3.1.0
[GitHub] [ranger] chenyu-opensource commented on pull request #193: [improve]Repair Log Description & Update jQuery version.
chenyu-opensource commented on PR #193: URL: https://github.com/apache/ranger/pull/193#issuecomment-1336630236 Thanks @bhavikpatel9977 for reply and suggestion. I have created a review request at https://reviews.apache.org/r/74235/. please review @bhavikpatel9977 @mneethiraj . Best wishes! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] Hoo199212 commented on pull request #186: RANGER-3968:The plugin cannot download the latest policy
Hoo199212 commented on PR #186: URL: https://github.com/apache/ranger/pull/186#issuecomment-1334833158 > In our production environment, the cache update thread has been stuck, the plugin can not get the latest permission information for a long time (perhaps more than 1 day),But once the server is restarted, it will be normal immediately. The timeout allows the thread to release the lock. The transaction time can be set, if the data volume is large and takes a long time to load, we can set a reasonable value -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #195: Bump decode-uri-component from 0.2.0 to 0.2.2 in /security-admin/src/test/javascript
dependabot[bot] opened a new pull request, #195: URL: https://github.com/apache/ranger/pull/195 Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from https://github.com/SamVerschueren/decode-uri-component/releases";>decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2";>https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode throws - fixes https://github-redirect.dependabot.com/SamVerschueren/decode-uri-component/issues/6";>#6 746ca5d Update license (https://github-redirect.dependabot.com/SamVerschueren/decode-uri-component/issues/1";>#1) 486d7e2 Tidelift tasks a650457 Meta tweaks 66e1c28 https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.1";>https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.1 Commits https://github.com/SamVerschueren/decode-uri-component/commit/a0eea469d26eb0df668b081672cdb9581feb78eb";>a0eea46 0.2.2 https://github.com/SamVerschueren/decode-uri-component/commit/980e0bf09b64d94f1aa79012f895816c30ffd152";>980e0bf Prevent overwriting previously decoded tokens https://github.com/SamVerschueren/decode-uri-component/commit/3c8a373dd4837e89b3f970e01295dd03e1405a33";>3c8a373 0.2.1 https://github.com/SamVerschueren/decode-uri-component/commit/76abc939783fe3900fadb7d384a74d324d5557f3";>76abc93 Switch to GitHub workflows https://github.com/SamVerschueren/decode-uri-component/commit/746ca5dcb6667c5d364e782d53c542830e4c10b9";>746ca5d Fix issue where decode throws - fixes https://github-redirect.dependabot.com/SamVerschueren/decode-uri-component/issues/6";>#6 https://github.com/SamVerschueren/decode-uri-component/commit/486d7e26d3a8c0fbe860fb651fe1bc98c2f2be30";>486d7e2 Update license (https://github-redirect.dependabot.com/SamVerschueren/decode-uri-component/issues/1";>#1) https://github.com/SamVerschueren/decode-uri-component/commit/a65045724e6234acef87f31da499d4807b20b134";>a650457 Tidelift tasks https://github.com/SamVerschueren/decode-uri-component/commit/66e1c2834c0e189201cb65196ec3101372459b02";>66e1c28 Meta tweaks See full diff in https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo f
[GitHub] [ranger] dependabot[bot] opened a new pull request, #194: Bump minimatch and mocha in /security-admin/src/test/javascript
dependabot[bot] opened a new pull request, #194: URL: https://github.com/apache/ranger/pull/194 Bumps [minimatch](https://github.com/isaacs/minimatch) to 3.1.2 and updates ancestor dependency [mocha](https://github.com/mochajs/mocha). These dependencies need to be updated together. Updates `minimatch` from 3.0.4 to 3.1.2 Commits https://github.com/isaacs/minimatch/commit/699c459443a6bd98f5b28197978f76e7f71467ac";>699c459 3.1.2 https://github.com/isaacs/minimatch/commit/2f2b5ff1bb1b6a01f4404f7e475f0a2cba578ab7";>2f2b5ff fix: trim pattern https://github.com/isaacs/minimatch/commit/25d7c0d09c47063c9b0d2ace17ef8e951d90eccc";>25d7c0d 3.1.1 https://github.com/isaacs/minimatch/commit/55dda291dfb595bd11b4edb19b45dd98eda76de0";>55dda29 fix: treat nocase:true as always having magic https://github.com/isaacs/minimatch/commit/5e1fb8dd2bb78c0ae22101b9229fac4c76ef039e";>5e1fb8d 3.1.0 https://github.com/isaacs/minimatch/commit/f8145c54f34075069f4a23cb214d871da4cd4006";>f8145c5 Add 'allowWindowsEscape' option https://github.com/isaacs/minimatch/commit/570e8b1aef6c9e823a824aa0b9be10db43857cd7";>570e8b1 add publishConfig for v3 publishes https://github.com/isaacs/minimatch/commit/5b7cd3372be253759fb4d865eb3f38f189a5fcdf";>5b7cd33 3.0.6 https://github.com/isaacs/minimatch/commit/20b4b562830680867feb75f9c635aca08e5c86ff";>20b4b56 [fix] revert all breaking syntax changes https://github.com/isaacs/minimatch/commit/2ff038852ec03e85e60e0eb333005c680ac8a543";>2ff0388 document, expose, and test 'partial:true' option Additional commits viewable in https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2";>compare view Updates `mocha` from 5.2.0 to 10.1.0 Release notes Sourced from https://github.com/mochajs/mocha/releases";>mocha's releases. v10.1.0 10.1.0 / 2022-10-16 :tada: Enhancements https://github-redirect.dependabot.com/mochajs/mocha/issues/4896";>#4896: Browser: add support for prefers-color-scheme: dark (https://github.com/greggman";>@greggman) :nut_and_bolt: Other https://github-redirect.dependabot.com/mochajs/mocha/issues/4912";>#4912: Browser: increase contrast for replay buttons (https://github.com/JoshuaKGoldberg";>@JoshuaKGoldberg) https://github-redirect.dependabot.com/mochajs/mocha/issues/4905";>#4905: Use standard Promise.allSettled instead of polyfill (https://github.com/outsideris";>@outsideris) https://github-redirect.dependabot.com/mochajs/mocha/issues/4899";>#4899: Upgrade official GitHub actions to latest (https://github.com/ddzz";>@ddzz) https://github-redirect.dependabot.com/mochajs/mocha/issues/4770";>#4770: Fix regex in function clean(https://github.com/yetingli";>@yetingli) v10.0.0 10.0.0 / 2022-05-01 :boom: Breaking Changes https://github-redirect.dependabot.com/mochajs/mocha/issues/4845";>#4845: Drop Node.js v12.x support (https://github.com/juergba";>@juergba) https://github-redirect.dependabot.com/mochajs/mocha/issues/4848";>#4848: Drop Internet-Explorer-11 support (https://github.com/juergba";>@juergba) https://github-redirect.dependabot.com/mochajs/mocha/issues/4857";>#4857: Drop AMD/RequireJS support (https://github.com/juergba";>@juergba) https://github-redirect.dependabot.com/mochajs/mocha/issues/4866";>#4866: Drop Growl notification support (https://github.com/juergba";>@juergba) https://github-redirect.dependabot.com/mochajs/mocha/issues/4863";>#4863: Rename executable bin/mocha to bin/mocha.js (https://github.com/juergba";>@juergba) https://github-redirect.dependabot.com/mochajs/mocha/issues/4865";>#4865: --ignore option in Windows: upgrade Minimatch (https://github.com/juergba";>@juergba) https://github-redirect.dependabot.com/mochajs/mocha/issues/4861";>#4861: Remove deprecated Runner signature (https://github.com/juergba";>@juergba) :nut_and_bolt: Other https://github-redirect.dependabot.com/mochajs/mocha/issues/4878";>#4878: Update production dependencies (https://github.com/juergba";>@juergba) https://github-redirect.dependabot.com/mochajs/mocha/issues/4876";>#4876: Add Node.js v18 to CI test matrix (https://github.com/outsideris";>@outsideris) https://github-redirect.dependabot.com/mochajs/mocha/issues/4852";>#4852: Replace deprecated String.prototype.substr() (https://github.com/CommanderRoot";>@CommanderRoot) Also thanks to https://github.com/ea2305";>@ea2305 and https://github.com/SukkaW";>@SukkaW for improvements to our documentation. v9.2.2 9.2.2 / 2022-03-11 Please also note our https://github.com/mochajs/mocha/discussions/categories/announcements";>announcements. :bug: Fixes ... (truncated) Changelog Sourced from https://github.com/mochajs/mocha/blob/master/CHANGELOG.md";>mocha's changelog. 10.1.0 / 2022-10-16 :tad
[GitHub] [ranger] mneethiraj commented on pull request #186: RANGER-3968:The plugin cannot download the latest policy
mneethiraj commented on PR #186: URL: https://github.com/apache/ranger/pull/186#issuecomment-1334029774 @Hoo199212 - what happens in environments having large number of policies, where loading can take more than 30 seconds? Wouldn't this patch result in loading to fail every time? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] Hoo199212 commented on pull request #186: RANGER-3968:The plugin cannot download the latest policy
Hoo199212 commented on PR #186: URL: https://github.com/apache/ranger/pull/186#issuecomment-1333611507 @bhavikpatel9977 please review, thank you so much! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] bhavikpatel9977 commented on pull request #193: [improve]Repair Log Description & Update jQuery version.
bhavikpatel9977 commented on PR #193: URL: https://github.com/apache/ranger/pull/193#issuecomment-1333475411 Thanks @chenyu-opensource for the patch. Ranger follow review board process to merge any patch. Kindly attach patch at "https://reviews.apache.org/r/"; -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] chenyu-opensource commented on pull request #193: [improve]Repair Log Description & Update jQuery version.
chenyu-opensource commented on PR #193: URL: https://github.com/apache/ranger/pull/193#issuecomment-1331723055 @mneethiraj please review, thank you so much! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] chenyu-opensource closed pull request #192: [improve]repair Log Description
chenyu-opensource closed pull request #192: [improve]repair Log Description URL: https://github.com/apache/ranger/pull/192 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] bhavikpatel9977 commented on pull request #26: RANGER-2128: Implementation of Ranger Spark SQL plugin
bhavikpatel9977 commented on PR #26: URL: https://github.com/apache/ranger/pull/26#issuecomment-1328796328 > What does this PR do/accomplish that isn't already possible with the existing Hive support? We're currently running Spark Thriftserver (3.2.x) with the kyuubi plugin against Ranger where in Ranger we've defined the service as a Hive service and everything with regards to authentication and authorization seems to be working as expected. > > The only thing that I've observed that doesn't work is the auto-complete when creating policies via the Ranger UI, I assume this is a slight dialect difference in the response from the Spark Thriftserver vs a real HiveServer2 since the query being run by Ranger (`show databases like "*"`) returns the databases just fine when I run it myself. Thanks @simonvanderveldt. I think than we can include Kyuubi plugin in Ranger for Spark. If you are familiar with Kyuubi than Can you please raise demo PR? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] simonvanderveldt commented on pull request #26: RANGER-2128: Implementation of Ranger Spark SQL plugin
simonvanderveldt commented on PR #26: URL: https://github.com/apache/ranger/pull/26#issuecomment-1327689372 What does this PR do/accomplish that isn't already possible with the existing Hive support? We're currently running Spark Thriftserver (3.2.x) with the kyuubi plugin against Ranger where in Ranger we've defined the service as a Hive service and everything with regards to authentication and authorization seems to be working as expected. The only thing that I've observed that doesn't work is the auto-complete when creating policies via the Ranger UI, I assume this is a slight dialect difference in the response from the Spark Thriftserver vs a real HiveServer2. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] ttzztztz opened a new pull request, #190: [RANGER-3983] Support getColumnMasks and getRowFilters in Trino SPI 376+
ttzztztz opened a new pull request, #190: URL: https://github.com/apache/ranger/pull/190 - https://github.com/trinodb/trino/commit/827de57a50426e804761044d24d96b8877b62b7e - https://issues.apache.org/jira/browse/RANGER-3983 The functions `getColumnMask` and `getRowFilter` were deprecated since trino 376, and were removed in 401. So we should adapt to that change in ranger implementation. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] jonashartwig opened a new pull request, #188: RANGER-3751: fix for elastic search audit date format
jonashartwig opened a new pull request, #188: URL: https://github.com/apache/ranger/pull/188 This fixes date time show as 1970 in UI for elasticsearch audit store. This issue was introduced by work with cloudwatch audit store. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] commented on pull request #166: Bump engine.io and karma in /security-admin/src/test/javascript
dependabot[bot] commented on PR #166: URL: https://github.com/apache/ranger/pull/166#issuecomment-1323219394 Superseded by #187. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] closed pull request #166: Bump engine.io and karma in /security-admin/src/test/javascript
dependabot[bot] closed pull request #166: Bump engine.io and karma in /security-admin/src/test/javascript URL: https://github.com/apache/ranger/pull/166 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #187: Bump engine.io and karma in /security-admin/src/test/javascript
dependabot[bot] opened a new pull request, #187:
URL: https://github.com/apache/ranger/pull/187
Bumps [engine.io](https://github.com/socketio/engine.io) to 6.2.1 and
updates ancestor dependency [karma](https://github.com/karma-runner/karma).
These dependencies need to be updated together.
Updates `engine.io` from 3.2.1 to 6.2.1
Release notes
Sourced from https://github.com/socketio/engine.io/releases";>engine.io's
releases.
6.2.1
:warning: This release contains an important security fix :warning:
A malicious client could send a specially crafted HTTP request,
triggering an uncaught exception and killing the Node.js process:
Error: read ECONNRESET
at TCP.onStreamRead (internal/stream_base_commons.js:209:20)
Emitted 'error' event on Socket instance at:
at emitErrorNT (internal/streams/destroy.js:106:8)
at emitErrorCloseNT (internal/streams/destroy.js:74:3)
at processTicksAndRejections (internal/process/task_queues.js:80:21) {
errno: -104,
code: 'ECONNRESET',
syscall: 'read'
}
Please upgrade as soon as possible.
Bug Fixes
catch errors when destroying invalid upgrades (https://github-redirect.dependabot.com/socketio/engine.io/issues/658";>#658)
(https://github.com/socketio/engine.io/commit/425e833ab13373edf1dd5a0706f07100db14e3c6";>425e833)
6.2.0
Features
add the "maxPayload" field in the handshake details (https://github.com/socketio/engine.io/commit/088dcb4dff60df39785df13d0a33d3ceaa1dff38";>088dcb4)
So that clients in HTTP long-polling can decide how many packets they
have to send to stay under the maxHttpBufferSize
value.
This is a backward compatible change which should not mandate a new major
revision of the protocol (we stay in v4), as
we only add a field in the JSON-encoded handshake data:
0{"sid":"lv_VI97HAXpY6yYWAAAC","upgrades":["websocket"],"pingInterval":25000,"pingTimeout":5000,"maxPayload":100}
Links
Diff: https://github.com/socketio/engine.io/compare/6.1.3...6.2.0";>https://github.com/socketio/engine.io/compare/6.1.3...6.2.0
Client release: https://github.com/socketio/engine.io-client/releases/tag/6.2.0";>6.2.0
ws version: https://github.com/websockets/ws/releases/tag/8.2.3";>~8.2.3
6.1.3
Bug Fixes
typings: allow CorsOptionsDelegate as cors options (https://github-redirect.dependabot.com/socketio/engine.io/issues/641";>#641)
(https://github.com/socketio/engine.io/commit/a463d268ed90064e7863679bda423951de108c36";>a463d26)
uws: properly handle chunked content (https://github-redirect.dependabot.com/socketio/engine.io/issues/642";>#642)
(https://github.com/socketio/engine.io/commit/33674403084c329dc6ad026c4122333a6f8a9992";>3367440)
... (truncated)
Changelog
Sourced from https://github.com/socketio/engine.io/blob/main/CHANGELOG.md";>engine.io's
changelog.
https://github.com/socketio/engine.io/compare/6.2.0...6.2.1";>6.2.1
(2022-11-20)
:warning: This release contains an important security fix :warning:
A malicious client could send a specially crafted HTTP request,
triggering an uncaught exception and killing the Node.js process:
Error: read ECONNRESET
at TCP.onStreamRead (internal/stream_base_commons.js:209:20)
Emitted 'error' event on Socket instance at:
at emitErrorNT (internal/streams/destroy.js:106:8)
at emitErrorCloseNT (internal/streams/destroy.js:74:3)
at processTicksAndRejections (internal/process/task_queues.js:80:21) {
errno: -104,
code: 'ECONNRESET',
syscall: 'read'
}
Please upgrade as soon as possible.
Bug Fixes
catch errors when destroying invalid upgrades (https://github-redirect.dependabot.com/socketio/engine.io/issues/658";>#658)
(https://github.com/socketio/engine.io/commit/425e833ab13373edf1dd5a0706f07100db14e3c6";>425e833)
https://github.com/socketio/engine.io/compare/3.5.0...3.6.0";>3.6.0
(2022-06-06)
Bug Fixes
add extension in the package.json main entry (https://github-redirect.dependabot.com/socketio/engine.io/issues/608";>#608)
(https://github.com/socketio/engine.io/commit/3ad0567dbd57cfb7c2ff4e8b7488d80f37022b4a";>3ad0567)
do not reset the ping timer after upgrade (https://github.com/socketio/engine.io/commit/1f5d4699862afee1e410fcb0e1f5e751ebcd2f9f";>1f5d469),
closes https://github-redirect.dependabot.com//github-redirect.dependabot.com/socketio/socket.io-client-swift/pull/1309/issues/issuecomment-768475704";>socketio/socket.io-client-swift#1309
Features
decrease the default value of maxHttpBufferSize (https://github.com/socketio/engine.io/commit/58e274c437e9cbcf69fd913c813aad8fbd253703";>58e274c)
This change reduces the default value from 100 mb to a more sane 1 mb.
This helps protect the server against denial of service attacks by
malicious clients sending huge amounts of data.
See also: https://github.com/advisorie
[GitHub] [ranger] Hoo199212 commented on pull request #186: RANGER-3968:The plugin cannot download the latest policy
Hoo199212 commented on PR #186: URL: https://github.com/apache/ranger/pull/186#issuecomment-1322961789 @mneethiraj Hi,Because of the tests,The all build job exceeded the maximum log length, and has been terminated. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mneethiraj commented on pull request #184: Remove os.path.join causing incorrect windows path
mneethiraj commented on PR #184: URL: https://github.com/apache/ranger/pull/184#issuecomment-1322764759 @bdsoha - Apache Ranger Python client 0.0.7 was released few minutes back with this fix. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] bdsoha commented on pull request #184: Remove os.path.join causing incorrect windows path
bdsoha commented on PR #184: URL: https://github.com/apache/ranger/pull/184#issuecomment-1322496780 @mneethiraj Together with a package release on PyPi? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mneethiraj closed pull request #184: Remove os.path.join causing incorrect windows path
mneethiraj closed pull request #184: Remove os.path.join causing incorrect windows path URL: https://github.com/apache/ranger/pull/184 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mneethiraj commented on pull request #184: Remove os.path.join causing incorrect windows path
mneethiraj commented on PR #184: URL: https://github.com/apache/ranger/pull/184#issuecomment-1322431333 @bdsoha - thanks for the fix. I filed [RANGER-3969](https://issues.apache.org/jira/browse/RANGER-3969) to track this issue; will merge this fix shortly. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] Hoo199212 opened a new pull request, #186: RANGER-3968:The plugin cannot download the latest policy
Hoo199212 opened a new pull request, #186: URL: https://github.com/apache/ranger/pull/186 Add socket timeout settings -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] Hoo199212 closed pull request #183: RANGER-3968:The plugin cannot download the latest policy
Hoo199212 closed pull request #183: RANGER-3968:The plugin cannot download the latest policy URL: https://github.com/apache/ranger/pull/183 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] avs-alatau opened a new pull request, #185: ranger.audit.elasticsearch.password
avs-alatau opened a new pull request, #185: URL: https://github.com/apache/ranger/pull/185 Hi! It is necessary to encrypt the elasticsearch password in ranger-admin-site.xml ranger.audit.elasticsearch.password -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] bdsoha commented on pull request #184: Remove os.path.join causing incorrect windows path
bdsoha commented on PR #184: URL: https://github.com/apache/ranger/pull/184#issuecomment-1321500593 @mneethiraj Any change we can get this merged? Thanks in advance. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] preetsindhal commented on pull request #106: Support Java 11 and add trino plugin
preetsindhal commented on PR #106: URL: https://github.com/apache/ranger/pull/106#issuecomment-1318232287 Hi, can anyone share how to build the Trino plugin with 2.3 release i have tried the following but no tar file was created for trino plugin. mvn -Pall -DskipTests=true clean compile package install mvn -Pranger-jdk11 -DskipTests=true clean compile package install mvn -DskipTests=true clean compile package install assembly:assembly - fails with error I tried building it as explained here https://issues.apache.org/jira/browse/RANGER-3755 but no luck, getting the same errors as last comment on this jira issue. thanks. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] Hoo199212 opened a new pull request, #183: RANGER-3968:The plugin cannot download the latest policy
Hoo199212 opened a new pull request, #183: URL: https://github.com/apache/ranger/pull/183 Solve RANGER-3968 problem -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #182: Bump pillow from 9.2.0 to 9.3.0 in /ranger-tools/src/main/python
dependabot[bot] opened a new pull request, #182: URL: https://github.com/apache/ranger/pull/182 Bumps [pillow](https://github.com/python-pillow/Pillow) from 9.2.0 to 9.3.0. Release notes Sourced from https://github.com/python-pillow/Pillow/releases";>pillow's releases. 9.3.0 https://pillow.readthedocs.io/en/stable/releasenotes/9.3.0.html";>https://pillow.readthedocs.io/en/stable/releasenotes/9.3.0.html Changes Initialize libtiff buffer when saving https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6699";>#6699 [https://github.com/radarhere";>@radarhere] Limit SAMPLESPERPIXEL to avoid runtime DOS https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6700";>#6700 [https://github.com/wiredfool";>@wiredfool] Inline fname2char to fix memory leak https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6329";>#6329 [https://github.com/nulano";>@nulano] Fix memory leaks related to text features https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6330";>#6330 [https://github.com/nulano";>@nulano] Use double quotes for version check on old CPython on Windows https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6695";>#6695 [https://github.com/hugovk";>@hugovk] GHA: replace deprecated set-output command with GITHUB_OUTPUT file https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6697";>#6697 [https://github.com/nulano";>@nulano] Remove backup implementation of Round for Windows platforms https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6693";>#6693 [https://github.com/cgohlke";>@cgohlke] Upload fribidi.dll to GitHub Actions https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6532";>#6532 [https://github.com/nulano";>@nulano] Fixed set_variation_by_name offset https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6445";>#6445 [https://github.com/radarhere";>@radarhere] Windows build improvements https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6562";>#6562 [https://github.com/nulano";>@nulano] Fix malloc in _imagingft.c:font_setvaraxes https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6690";>#6690 [https://github.com/cgohlke";>@cgohlke] Only use ASCII characters in C source file https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6691";>#6691 [https://github.com/cgohlke";>@cgohlke] Release Python GIL when converting images using matrix operations https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6418";>#6418 [https://github.com/hmaarrfk";>@hmaarrfk] Added ExifTags enums https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6630";>#6630 [https://github.com/radarhere";>@radarhere] Do not modify previous frame when calculating delta in PNG https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6683";>#6683 [https://github.com/radarhere";>@radarhere] Added support for reading BMP images with RLE4 compression https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6674";>#6674 [https://github.com/npjg";>@npjg] Decode JPEG compressed BLP1 data in original mode https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6678";>#6678 [https://github.com/radarhere";>@radarhere] pylint warnings https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6659";>#6659 [https://github.com/marksmayo";>@marksmayo] Added GPS TIFF tag info https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6661";>#6661 [https://github.com/radarhere";>@radarhere] Added conversion between RGB/RGBA/RGBX and LAB https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6647";>#6647 [https://github.com/radarhere";>@radarhere] Do not attempt normalization if mode is already normal https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6644";>#6644 [https://github.com/radarhere";>@radarhere] Fixed seeking to an L frame in a GIF https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6576";>#6576 [https://github.com/radarhere";>@radarhere] Consider all frames when selecting mode for PNG save_all https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6610";>#6610 [https://github.com/radarhere";>@radarhere] Don't reassign crc on ChunkStream close https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6627";>#6627 [https://github.com/radarhere";>@radarhere] Raise a warning if NumPy failed to raise an error during conversion https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6594";>#6594 [https://github.com/radarhere";>@radarhere] Only read a maximum of 100 bytes at a time in IMT header https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6623";>#6623 [https://github.com/radarhere";>@radarhere] Show all frames in ImageShow https://github-redirect.dependabot.
[GitHub] [ranger] fengxiaozhou opened a new pull request, #181: RANGER-3950:tagChangeLog just record ranger admin restart log,but don…
fengxiaozhou opened a new pull request, #181: URL: https://github.com/apache/ranger/pull/181 please code review. https://issues.apache.org/jira/projects/RANGER/issues/RANGER-3950?filter=reportedbyme -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] fengxiaozhou closed pull request #180: RANGER-3950:tagChangeLog just record ranger admin restart log,but don…
fengxiaozhou closed pull request #180: RANGER-3950:tagChangeLog just record ranger admin restart log,but don… URL: https://github.com/apache/ranger/pull/180 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] fengxiaozhou opened a new pull request, #180: RANGER-3950:tagChangeLog just record ranger admin restart log,but don…
fengxiaozhou opened a new pull request, #180: URL: https://github.com/apache/ranger/pull/180 https://issues.apache.org/jira/projects/RANGER/issues/RANGER-3950?filter=allopenissues please code review~ thanks -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mneethiraj commented on pull request #128: RANGER-3534: Review of RangerHiveAuditHandler
mneethiraj commented on PR #128: URL: https://github.com/apache/ranger/pull/128#issuecomment-1299348513 @belugabehr - thank you for the improvements in RangerHiveAuditHandler. The changes look good; I will merge this patch shortly. Apache Ranger community has been using review board for patches. Please consider creating reviews there. Thanks! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #179: Bump socket.io-parser and karma in /security-admin/src/test/javascript
dependabot[bot] opened a new pull request, #179: URL: https://github.com/apache/ranger/pull/179 Bumps [socket.io-parser](https://github.com/socketio/socket.io-parser) to 4.2.1 and updates ancestor dependency [karma](https://github.com/karma-runner/karma). These dependencies need to be updated together. Updates `socket.io-parser` from 3.2.0 to 4.2.1 Release notes Sourced from https://github.com/socketio/socket.io-parser/releases";>socket.io-parser's releases. 4.2.1 Bug Fixes check the format of the index of each attachment (https://github.com/socketio/socket.io-parser/commit/b5d0cb7dc56a0601a09b056beaeeb0e43b160050";>b5d0cb7) Links Diff: https://github.com/socketio/socket.io-parser/compare/4.2.0...4.2.1";>https://github.com/socketio/socket.io-parser/compare/4.2.0...4.2.1 4.2.0 Features allow the usage of custom replacer and reviver (https://github-redirect.dependabot.com/socketio/socket.io-parser/issues/112";>#112) (https://github.com/socketio/socket.io-parser/commit/b08bc1a93e8e3194b776c8a0bdedee1e29333680";>b08bc1a) Links Diff: https://github.com/socketio/socket.io-parser/compare/4.1.2...4.2.0";>https://github.com/socketio/socket.io-parser/compare/4.1.2...4.2.0 4.1.2 Bug Fixes allow objects with a null prototype in binary packets (https://github-redirect.dependabot.com/socketio/socket.io-parser/issues/114";>#114) (https://github.com/socketio/socket.io-parser/commit/7f6b262ac83bdf43c53a7eb02417e56e0cf491c8";>7f6b262) Links Diff: https://github.com/socketio/socket.io-parser/compare/4.1.1...4.1.2";>https://github.com/socketio/socket.io-parser/compare/4.1.1...4.1.2 4.1.1 Links Diff: https://github.com/socketio/socket.io-parser/compare/4.1.0...4.1.1";>https://github.com/socketio/socket.io-parser/compare/4.1.0...4.1.1 4.1.0 Features provide an ESM build with and without debug (https://github.com/socketio/socket.io-parser/commit/388c616a9221e4341945f8487e729e93a81d2da5";>388c616) Links Diff: https://github.com/socketio/socket.io-parser/compare/4.0.4...4.1.0";>https://github.com/socketio/socket.io-parser/compare/4.0.4...4.1.0 4.0.5 Bug Fixes check the format of the index of each attachment (https://github.com/socketio/socket.io-parser/commit/b559f050ee02bd90bd853b9823f8de7fa94a80d4";>b559f05) Links Diff: https://github.com/socketio/socket.io-parser/compare/4.0.4...4.0.5";>https://github.com/socketio/socket.io-parser/compare/4.0.4...4.0.5 ... (truncated) Changelog Sourced from https://github.com/socketio/socket.io-parser/blob/main/CHANGELOG.md";>socket.io-parser's changelog. https://github.com/socketio/socket.io-parser/compare/4.2.0...4.2.1";>4.2.1 (2022-06-27) Bug Fixes check the format of the index of each attachment (https://github.com/socketio/socket.io-parser/commit/b5d0cb7dc56a0601a09b056beaeeb0e43b160050";>b5d0cb7) https://github.com/socketio/socket.io-parser/compare/4.1.2...4.2.0";>4.2.0 (2022-04-17) Features allow the usage of custom replacer and reviver (https://github-redirect.dependabot.com/socketio/socket.io-parser/issues/112";>#112) (https://github.com/socketio/socket.io-parser/commit/b08bc1a93e8e3194b776c8a0bdedee1e29333680";>b08bc1a) https://github.com/socketio/socket.io-parser/compare/4.1.1...4.1.2";>4.1.2 (2022-02-17) Bug Fixes allow objects with a null prototype in binary packets (https://github-redirect.dependabot.com/socketio/socket.io-parser/issues/114";>#114) (https://github.com/socketio/socket.io-parser/commit/7f6b262ac83bdf43c53a7eb02417e56e0cf491c8";>7f6b262) https://github.com/socketio/socket.io-parser/compare/4.1.0...4.1.1";>4.1.1 (2021-10-14) https://github.com/socketio/socket.io-parser/compare/4.0.4...4.1.0";>4.1.0 (2021-10-11) Features provide an ESM build with and without debug (https://github.com/socketio/socket.io-parser/commit/388c616a9221e4341945f8487e729e93a81d2da5";>388c616) https://github.com/socketio/socket.io-parser/compare/4.0.3...4.0.4";>4.0.4 (2021-01-15) Bug Fixes allow integers as event names (https://github.com/socketio/socket.io-parser/commit/1c220ddbf45ea4b44bc8dbf6f9ae245f672ba1b9";>1c220dd) https://github.com/socketio/socket.io-parser/compare/4.0.2...4.0.3";>4.0.3 (2021-01-05) https://github.com/socketio/socket.io-parser/compare/4.0.1...4.0.2";>4.0.2 (2020-11-25) ... (truncated) Commits https://github.com/socketio/socket.io-parser/commit/5a2ccff9d1d8fdbadd3faad9290a9e3b165cf9a2";>5a2ccff chore(release): 4.2.1 https://github.com/socketio/socket.io-parser/commit/b5d0cb7dc56a0601a09b056beaeeb0e43b160050";>b5d0cb7 fix: check the format of the index of each attachment https://github.com/socketio/socket.io-parser/commit/c7514b5aa638d8b779c72a1172a2a694e97b15b7";>c7514b5 chore(release): 4.2.0 https
[GitHub] [ranger] zhangxinjian123 commented on pull request #81: Release ranger 2.1.0 cdh 6.3.1 hylink
zhangxinjian123 commented on PR #81: URL: https://github.com/apache/ranger/pull/81#issuecomment-1295791143 The cdh6.1.1 integrated ranger 2.1.0 also changes the relevant code according to the instructions. Hive can perform permission control, but the permission control of hdfs does not take effect. What is the matter? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mr1716 closed pull request #172: Update Hadoop To 3.3.4
mr1716 closed pull request #172: Update Hadoop To 3.3.4 URL: https://github.com/apache/ranger/pull/172 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mneethiraj closed pull request #55: Ranger REST API missing info when GET user by name
mneethiraj closed pull request #55: Ranger REST API missing info when GET user by name URL: https://github.com/apache/ranger/pull/55 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mneethiraj commented on pull request #55: Ranger REST API missing info when GET user by name
mneethiraj commented on PR #55: URL: https://github.com/apache/ranger/pull/55#issuecomment-1283179880 @dargooo - thank you for the fix. Merged this fix in master and ranger-2.4 branches. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #178: Bump jettison from 1.1 to 1.5.1 in /plugin-schema-registry
dependabot[bot] opened a new pull request, #178: URL: https://github.com/apache/ranger/pull/178 Bumps [jettison](https://github.com/jettison-json/jettison) from 1.1 to 1.5.1. Release notes Sourced from https://github.com/jettison-json/jettison/releases";>jettison's releases. Jettison 1.5.1 What's Changed Stack Overflow fix on malformed JSON by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/48";>jettison-json/jettison#48 Prevent infinite loop when a /* comment is not terminated by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/49";>jettison-json/jettison#49 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1";>https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1 Commits https://github.com/jettison-json/jettison/commit/bdb3982aaea184c2143e41981e33877c2fd66292";>bdb3982 [maven-release-plugin] prepare release jettison-1.5.1 https://github.com/jettison-json/jettison/commit/1268b7558bad9b989687009a094466b64d4da533";>1268b75 Prevent infinite loop when a /* comment is not terminated https://github.com/jettison-json/jettison/commit/cff9f2814ec8ae573e38f38abed039311bb7bfda";>cff9f28 Create codeql-analysis.yml https://github.com/jettison-json/jettison/commit/395f8625bcf688743872c8e7f59360d372e77811";>395f862 Stack Overflow fix on malformed JSON https://github.com/jettison-json/jettison/commit/a5d2223bafd4c5ec37723533fa5c4066ead4eaaa";>a5d2223 [maven-release-plugin] prepare for next development iteration https://github.com/jettison-json/jettison/commit/e1bf5293d10af3ebfcd8763eb51a20a659b9047c";>e1bf529 [maven-release-plugin] prepare release jettison-1.5.0 https://github.com/jettison-json/jettison/commit/9ccf9d00fbae12fd10863c5b78d22bac6e5b87e4";>9ccf9d0 Update some deps/plugin versions https://github.com/jettison-json/jettison/commit/cfc7382c4dab4e207d2db2f0a70f60ce565e477d";>cfc7382 Performance improvement https://github.com/jettison-json/jettison/commit/d3714681f61581810680df8e45858a4d30a602da";>d371468 Use BigDecimal instead of Double to avoid loss of precision https://github.com/jettison-json/jettison/commit/23a64eedf97e29b6562de8c3b024af414df9b900";>23a64ee Avoid NullPointerException when used with Axis2 1.5 Additional commits viewable in https://github.com/jettison-json/jettison/compare/jettison-1.1...jettison-1.5.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automate
[GitHub] [ranger] lissali commented on pull request #120: RANGER-3182: Rename Prestosql to Trino
lissali commented on PR #120:
URL: https://github.com/apache/ranger/pull/120#issuecomment-1282599535
> Hi @aakashnand thanks for the reply, the issues we encountered are
resolved, it is not related to this PR so I deleted my comment.
>
> And now we got another issue, in Presto log we see:
>
> ```
> 2021-10-12T16:47:28.821+0800WARN
PolicyRefresher(serviceName=prestodev)-259
org.apache.ranger.admin.client.RangerAdminRESTClientError getting Roles.
secureMode=false, user=root (auth:SIMPLE),
response={"httpStatusCode":401,"statusCode":401,"msgDesc":"Authentication
Failed"}, serviceName=prestodev
> 2021-10-12T16:47:58.821+0800WARN
PolicyRefresher(serviceName=prestodev)-259
org.apache.ranger.admin.client.RangerAdminRESTClientError getting Roles.
secureMode=false, user=root (auth:SIMPLE),
response={"httpStatusCode":401,"statusCode":401,"msgDesc":"Authentication
Failed"}, serviceName=prestodev
> 2021-10-12T16:48:23.509+0800INFOHttpServerScheduler
org.eclipse.jetty.util.ssl.SslContextFactory
x509=X509@3eac10e4(1,h=[hadoop02-10-165-48-97],w=[]) for
Server@c55b55[provider=null,keyStore=file:///etc/presto/presto.hadoop02-10-165-48-97.keystore.jks,trustStore=null]
> 2021-10-12T16:48:28.821+0800WARN
PolicyRefresher(serviceName=prestodev)-259
org.apache.ranger.admin.client.RangerAdminRESTClientError getting Roles.
secureMode=false, user=root (auth:SIMPLE),
response={"httpStatusCode":401,"statusCode":401,"msgDesc":"Authentication
Failed"}, serviceName=prestodev
> 2021-10-12T16:48:58.821+0800WARN
PolicyRefresher(serviceName=prestodev)-259
org.apache.ranger.admin.client.RangerAdminRESTClientError getting Roles.
secureMode=false, user=root (auth:SIMPLE),
response={"httpStatusCode":401,"statusCode":401,"msgDesc":"Authentication
Failed"}, serviceName=prestodev
> ```
>
> And I guess this is related to the usersync, maybe we missed providing the
credentials? If you happen to know what would be the cause can let me know,
thanks!
@jerryleooo how did you resolve the issue about
+ Tue Oct 18 08:28:20 PDT 2022 : Saving lib file:
/opt/presto/plugin/ranger/validation-api-2.0.1.Final.jar to
/opt/presto/plugin/ranger/.validation-api-2.0.1.Final.jar.20221018082820 ...
Unable to store password in non-plain text format. Error: [Exception in
thread "main" java.lang.NoClassDefFoundError:
org/apache/commons/lang3/StringUtils
I also encountered the same issue when enable presto-plugin.
Thanks a lot!
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
[GitHub] [ranger] mneethiraj commented on pull request #177: RANGER-3938: Fix for ranger audits in case of an alias
mneethiraj commented on PR #177: URL: https://github.com/apache/ranger/pull/177#issuecomment-1274972132 @acharneski - will you be able to review this fix in Elasticsearch audit module? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] sumannewton closed pull request #177: RANGER-3938: Fix for ranger audits in case of an alias
sumannewton closed pull request #177: RANGER-3938: Fix for ranger audits in case of an alias URL: https://github.com/apache/ranger/pull/177 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] sumannewton opened a new pull request, #177: RANGER-3938: Fix for ranger audits in case of an alias
sumannewton opened a new pull request, #177:
URL: https://github.com/apache/ranger/pull/177
Lets say for ranger audit, we configure an elasticsearch alias(rollover
alias). And if there are 2 or more indices for an alias then audit API doesn't
work. Because while fetching the records, ranger uses multi get request on an
alias.
It results in below error:
```
Alias [alias-name] has more than one indices associated with it
[[index-02, index-01]], can't execute a single index op
```
[Code
snippet](https://github.com/apache/ranger/blob/6c8a142881896f2c6d1696bcee02c401867a45f9/security-admin/src/main/java/org/apache/ranger/elasticsearch/ElasticSearchUtil.java#L175-L180):
```
MultiGetRequest multiGetRequest = new MultiGetRequest();
for (SearchHit hit : hits) {
MultiGetRequest.Item item = new MultiGetRequest.Item(index,
null, hit.getId());
item.fetchSourceContext(FetchSourceContext.FETCH_SOURCE);
multiGetRequest.add(item);
}
```
So there can be 2 possible approaches to resolve this:
- Approach 1(Quick and fast) [THIS MERGE REQUEST HAS THIS FIX]:
Use hit.getIndex() instead of index(in this case its has alias) for a
MultiGetRequest.Item object.
So that all the documents can be get by id with its index only instead of
alias.
- Approach 2(Change the MultiGet to search) [NOT PART OF THIS MERGE
REQUEST]:
```
POST /_search
{
"query": {
"ids" : {
"values" : ["id1", "id2"]
}
}
}
```
Please review.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
[GitHub] [ranger] sumannewton commented on pull request #177: RANGER-3938: Fix for ranger audits in case of an alias
sumannewton commented on PR #177: URL: https://github.com/apache/ranger/pull/177#issuecomment-1265089344 @mneethiraj @pradeepagrawal8184 Please review. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] luohaifang commented on pull request #40: Bump nimbus-jose-jwt from 4.41.2 to 7.9 in /security-admin
luohaifang commented on PR #40: URL: https://github.com/apache/ranger/pull/40#issuecomment-1257118683 > I run the fllowing cmd to compile the branch 2.0.0 "mvn clean compile package install assembly:assembly -Dmaven.test.skip=true -DskipJSTests" ,the module security-admin comes error security-admin\target\jsmain\node_modules.bin\r.js > > [ERROR] Failed to execute goal com.github.eirslett:frontend-maven-plugin:1.6:npm (npm run r.js) on project security-admin-web: Failed to run task: 'npm run r.js -- -o ../security-admin-web-2.0.0/minify.build.js' failed. org.apache.commons.exec.ExecuteException: Process exited with an error: 1 (Exit value: 1) -> [Help 1] > > 17 verbose argv "D:\bigdata\ranger-release-ranger-2.0.0\security-admin\target\node\node.exe" "D:\bigdata\ranger-release-ranger-2.0.0\security-admin\target\node\node_modules\npm\bin\npm-cli.js" "run" "r.js" "--" "-o" "../security-admin-web-2.0.0/minify.build.js" 18 verbose node v8.12.0 19 verbose npm v6.4.1 20 error code ELIFECYCLE 21 error errno 1 22 error security-admin@2.0.0 r.js: `r.js "-o" "../security-admin-web-2.0.0/minify.build.js"` 22 error Exit status 1 23 error Failed at the security-admin@2.0.0 r.js script. 23 error This is probably not a problem with npm. There is likely additional logging output above. 24 verbose exit [ 1, true ] > I run the fllowing cmd to compile the branch 2.0.0 "mvn clean compile package install assembly:assembly -Dmaven.test.skip=true -DskipJSTests" ,the module security-admin comes error security-admin\target\jsmain\node_modules.bin\r.js > > [ERROR] Failed to execute goal com.github.eirslett:frontend-maven-plugin:1.6:npm (npm run r.js) on project security-admin-web: Failed to run task: 'npm run r.js -- -o ../security-admin-web-2.0.0/minify.build.js' failed. org.apache.commons.exec.ExecuteException: Process exited with an error: 1 (Exit value: 1) -> [Help 1] > > 17 verbose argv "D:\bigdata\ranger-release-ranger-2.0.0\security-admin\target\node\node.exe" "D:\bigdata\ranger-release-ranger-2.0.0\security-admin\target\node\node_modules\npm\bin\npm-cli.js" "run" "r.js" "--" "-o" "../security-admin-web-2.0.0/minify.build.js" 18 verbose node v8.12.0 19 verbose npm v6.4.1 20 error code ELIFECYCLE 21 error errno 1 22 error security-admin@2.0.0 r.js: `r.js "-o" "../security-admin-web-2.0.0/minify.build.js"` 22 error Exit status 1 23 error Failed at the security-admin@2.0.0 r.js script. 23 error This is probably not a problem with npm. There is likely additional logging output above. 24 verbose exit [ 1, true ] hello,Have you solved the problem? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] eubnara closed pull request #170: RANGER-3858: On dev-support, service creation and ranger-kafka-plugin setup are failed
eubnara closed pull request #170: RANGER-3858: On dev-support, service creation and ranger-kafka-plugin setup are failed URL: https://github.com/apache/ranger/pull/170 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] eubnara commented on pull request #170: RANGER-3858: On dev-support, service creation and ranger-kafka-plugin setup are failed
eubnara commented on PR #170: URL: https://github.com/apache/ranger/pull/170#issuecomment-1253060014 resolved at https://github.com/apache/ranger/commit/e7cd999f09139c8bb973e138b7cae487f5d33327 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] Sangrho opened a new pull request, #176: For solving the issue when run setup.sh about x_portal_user table
Sangrho opened a new pull request, #176: URL: https://github.com/apache/ranger/pull/176 ``` ERROR 1118 (42000): Row size too large. The maximum row size for the used table type, not counting BLOBs, is 65535. This includes storage overhead, check the manual. You have to change some columns to TEXT or BLOBs ``` If I solve this issue, I should change 'innodb_page_size' but it is hard to us. So I change the type of those columns to TEXT -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] ramackri closed pull request #175: RANGER-3898:Bug in Ranger Roles Cache
ramackri closed pull request #175: RANGER-3898:Bug in Ranger Roles Cache URL: https://github.com/apache/ranger/pull/175 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] HalimKim opened a new pull request, #174: Update RangerAuthorizationCoprocessor.java
HalimKim opened a new pull request, #174: URL: https://github.com/apache/ranger/pull/174 Correct typo (namepsacePermission ->namespacePermission) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] ramackri commented on pull request #172: Update Hadoop To 3.3.4
ramackri commented on PR #172: URL: https://github.com/apache/ranger/pull/172#issuecomment-1235087965 It seems the below jar is missing or conflicts with the other transitive dependencies com.fasterxml.woodstox:woodstox-core:jar org.codehaus.woodstox:stax2-api:jar -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] shreedhar22 commented on pull request #172: Update Hadoop To 3.3.4
shreedhar22 commented on PR #172: URL: https://github.com/apache/ranger/pull/172#issuecomment-1234765998 hello, is there an update on this? I tried updating hadoop from `3.3.0` to `3.3.2` and faced the following exception while starting the ranger admin server: ``` Exception in thread "main" java.lang.NoClassDefFoundError: com/ctc/wstx/io/InputBootstrapper at org.apache.ranger.credentialapi.CredentialReader.getDecryptedString(CredentialReader.java:39) at org.apache.ranger.server.tomcat.EmbeddedServer.getKeyManagers(EmbeddedServer.java:414) at org.apache.ranger.server.tomcat.EmbeddedServer.getSSLContext(EmbeddedServer.java:388) at org.apache.ranger.server.tomcat.EmbeddedServer.start(EmbeddedServer.java:99) at org.apache.ranger.server.tomcat.EmbeddedServer.main(EmbeddedServer.java:84) Caused by: java.lang.ClassNotFoundException: com.ctc.wstx.io.InputBootstrapper at java.net.URLClassLoader.findClass(URLClassLoader.java:387) at java.lang.ClassLoader.loadClass(ClassLoader.java:418) at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:352) at java.lang.ClassLoader.loadClass(ClassLoader.java:351) ... 5 more ``` curious to know if this is resolved in any of the further hadoop versions that are CVE free? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] justusrk opened a new pull request, #173: Installation Fails setup.sh : Newer MySQL requires to set the flag useSSL false when not using SSL
justusrk opened a new pull request, #173: URL: https://github.com/apache/ranger/pull/173 Running setup.sh fails because of not explicitly setting useSSL=false. This is done properly in db_setup.py but not in dba_setup.py. This patch fixes the problem and runs the setup successfully for newer MySQL versions. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] JeevansSP commented on pull request #111: Parse URL using urlib.parse or urlparse instead of os package
JeevansSP commented on PR #111: URL: https://github.com/apache/ranger/pull/111#issuecomment-1229145187 Fixed the issue, just had to make it https instead of http -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mr1716 opened a new pull request, #172: Update Hadoop To 3.3.4
mr1716 opened a new pull request, #172: URL: https://github.com/apache/ranger/pull/172 Upgrading Hadoop to 3.3.4 will help reduce the number of open CVEs in the ranger product -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] ttzztztz opened a new pull request, #171: [RANGER-3863] Update dependencies to support macOS aarch64 M1 (Apple Silicon) environment
ttzztztz opened a new pull request, #171: URL: https://github.com/apache/ranger/pull/171 [JIRA LInk](https://issues.apache.org/jira/browse/RANGER-3863) This Pr is to update dependencies to support macOS aarch64 devices. We'll see the `UnsatisfiedLinkError` like below: ```plain Exception in thread "main" java.lang.UnsatisfiedLinkError: /Users/USERNAME/Library/Caches/JetBrains/IntelliJIdea2020.3/tmp/jna6890631648374949923.tmp: dlopen(/Users/USERNAME/Library/Caches/JetBrains/IntelliJIdea2020.3/tmp/jna6890631648374949923.tmp, 1): no suitable image found. Did find: /Users/USERNAME/Library/Caches/JetBrains/IntelliJIdea2020.3/tmp/jna6890631648374949923.tmp: no matching architecture in universal wrapper /Users/USERNAME/Library/Caches/JetBrains/IntelliJIdea2020.3/tmp/jna6890631648374949923.tmp: no matching architecture in universal wrapper at java.lang.ClassLoader$NativeLibrary.load(Native Method) ``` This is because the dependencies wasn't updated to the version which supports M1. Maven repo link: 1. [Java Native Access](https://mvnrepository.com/artifact/net.java.dev.jna/jna/5.7.0), [changelog](https://github.com/java-native-access/jna/blob/master/CHANGES.md#release-570) 2. [gethostname4j](https://mvnrepository.com/artifact/com.kstruct/gethostname4j), [related PR](https://github.com/mattsheppard/gethostname4j/pull/8) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] eubnara opened a new pull request, #170: RANGER-3858: On dev-support, service creation and ranger-kafka-plugin setup are failed
eubnara opened a new pull request, #170: URL: https://github.com/apache/ranger/pull/170 https://issues.apache.org/jira/browse/RANGER-3858 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mokonabarb opened a new pull request, #169: Update README.md
mokonabarb opened a new pull request, #169: URL: https://github.com/apache/ranger/pull/169 change name from ranger-api-plugin (Comcast internal name) to plugin-nestedstructure -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] AlvinWo opened a new pull request, #168: [Trino Plugin] fix the test failure
AlvinWo opened a new pull request, #168: URL: https://github.com/apache/ranger/pull/168 I got test failure when test the trino plugin: ``` Caused by: java.lang.IllegalStateException: Detected both log4j-over-slf4j.jar AND bound slf4j-log4j12.jar on the class path, preempting StackOverflowError. See also http://www.slf4j.org/codes.html#log4jDelegationLoop for more details. at org.slf4j.impl.Log4jLoggerFactory.(Log4jLoggerFactory.java:54) ... 28 more ``` https://user-images.githubusercontent.com/4988379/184331932-7614a5a4-d828-4688-83ea-90fad2d069ee.png";> The failure is that the two jars `log4j-over-slf4j.jar` AND `slf4j-log4j12.jar` are detected in the classpath: https://stackoverflow.com/questions/20117720/detected-both-log4j-over-slf4j-jar-and-slf4j-log4j12-jar-on-the-class-path-pree https://user-images.githubusercontent.com/4988379/184332182-4aa4999e-3d6f-4839-8ccd-9f4f26497edb.png";> So I removed the test dependency `log4j-over-slf4j` to run the test. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] closed pull request #145: Bump hadoop-common from 3.1.1 to 3.2.3 in /hbase-agent
dependabot[bot] closed pull request #145: Bump hadoop-common from 3.1.1 to 3.2.3 in /hbase-agent URL: https://github.com/apache/ranger/pull/145 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] commented on pull request #145: Bump hadoop-common from 3.1.1 to 3.2.3 in /hbase-agent
dependabot[bot] commented on PR #145: URL: https://github.com/apache/ranger/pull/145#issuecomment-1212503903 Superseded by #167. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #167: Bump hadoop-common from 3.1.1 to 3.2.4 in /hbase-agent
dependabot[bot] opened a new pull request, #167: URL: https://github.com/apache/ranger/pull/167 Bumps hadoop-common from 3.1.1 to 3.2.4. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/ranger/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] closed pull request #140: Bump karma from 3.1.4 to 6.3.16 in /security-admin/src/test/javascript
dependabot[bot] closed pull request #140: Bump karma from 3.1.4 to 6.3.16 in /security-admin/src/test/javascript URL: https://github.com/apache/ranger/pull/140 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] commented on pull request #140: Bump karma from 3.1.4 to 6.3.16 in /security-admin/src/test/javascript
dependabot[bot] commented on PR #140: URL: https://github.com/apache/ranger/pull/140#issuecomment-1212483573 Superseded by #166. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #166: Bump engine.io and karma in /security-admin/src/test/javascript
dependabot[bot] opened a new pull request, #166:
URL: https://github.com/apache/ranger/pull/166
Bumps [engine.io](https://github.com/socketio/engine.io) and
[karma](https://github.com/karma-runner/karma). These dependencies needed to be
updated together.
Updates `engine.io` from 3.2.1 to 6.2.0
Release notes
Sourced from https://github.com/socketio/engine.io/releases";>engine.io's
releases.
6.2.0
Features
add the "maxPayload" field in the handshake details (https://github.com/socketio/engine.io/commit/088dcb4dff60df39785df13d0a33d3ceaa1dff38";>088dcb4)
So that clients in HTTP long-polling can decide how many packets they
have to send to stay under the maxHttpBufferSize
value.
This is a backward compatible change which should not mandate a new major
revision of the protocol (we stay in v4), as
we only add a field in the JSON-encoded handshake data:
0{"sid":"lv_VI97HAXpY6yYWAAAC","upgrades":["websocket"],"pingInterval":25000,"pingTimeout":5000,"maxPayload":100}
Links
Diff: https://github.com/socketio/engine.io/compare/6.1.3...6.2.0";>https://github.com/socketio/engine.io/compare/6.1.3...6.2.0
Client release: https://github.com/socketio/engine.io-client/releases/tag/6.2.0";>6.2.0
ws version: https://github.com/websockets/ws/releases/tag/8.2.3";>~8.2.3
6.1.3
Bug Fixes
typings: allow CorsOptionsDelegate as cors options (https://github-redirect.dependabot.com/socketio/engine.io/issues/641";>#641)
(https://github.com/socketio/engine.io/commit/a463d268ed90064e7863679bda423951de108c36";>a463d26)
uws: properly handle chunked content (https://github-redirect.dependabot.com/socketio/engine.io/issues/642";>#642)
(https://github.com/socketio/engine.io/commit/33674403084c329dc6ad026c4122333a6f8a9992";>3367440)
Links
Diff: https://github.com/socketio/engine.io/compare/6.1.2...6.1.3";>https://github.com/socketio/engine.io/compare/6.1.2...6.1.3
Client release: -
ws version: https://github.com/websockets/ws/releases/tag/8.2.3";>~8.2.3
6.1.2
Bug Fixes
uws: expose additional uWebSockets.js options (https://github-redirect.dependabot.com/socketio/engine.io/issues/634";>#634)
(https://github.com/socketio/engine.io/commit/49bb7cf66518d4b49baf883a16ee1fe1ed8aed28";>49bb7cf)
uws: fix HTTP long-polling with CORS (https://github.com/socketio/engine.io/commit/45112a30d1af4cc25b21a5d658a748583cb64ed4";>45112a3)
uws: handle invalid websocket upgrades (https://github.com/socketio/engine.io/commit/8b4d6a8176db72f5c2420c5a45f0d97d33af049b";>8b4d6a8)
Links
Diff: https://github.com/socketio/engine.io/compare/6.1.1...6.1.2";>https://github.com/socketio/engine.io/compare/6.1.1...6.1.2
Client release: -
ws version: https://github.com/websockets/ws/releases/tag/8.2.3";>~8.2.3
6.1.1
:warning: This release contains an important security fix :warning:
... (truncated)
Changelog
Sourced from https://github.com/socketio/engine.io/blob/main/CHANGELOG.md";>engine.io's
changelog.
https://github.com/socketio/engine.io/compare/6.1.3...6.2.0";>6.2.0
(2022-04-17)
Features
add the "maxPayload" field in the handshake details (https://github.com/socketio/engine.io/commit/088dcb4dff60df39785df13d0a33d3ceaa1dff38";>088dcb4)
So that clients in HTTP long-polling can decide how many packets they
have to send to stay under the maxHttpBufferSize
value.
This is a backward compatible change which should not mandate a new major
revision of the protocol (we stay in v4), as
we only add a field in the JSON-encoded handshake data:
0{"sid":"lv_VI97HAXpY6yYWAAAC","upgrades":["websocket"],"pingInterval":25000,"pingTimeout":5000,"maxPayload":100}
https://github.com/socketio/engine.io/compare/6.1.2...6.1.3";>6.1.3
(2022-02-23)
Bug Fixes
typings: allow CorsOptionsDelegate as cors options (https://github-redirect.dependabot.com/socketio/engine.io/issues/641";>#641)
(https://github.com/socketio/engine.io/commit/a463d268ed90064e7863679bda423951de108c36";>a463d26)
uws: properly handle chunked content (https://github-redirect.dependabot.com/socketio/engine.io/issues/642";>#642)
(https://github.com/socketio/engine.io/commit/33674403084c329dc6ad026c4122333a6f8a9992";>3367440)
https://github.com/socketio/engine.io/compare/6.1.1...6.1.2";>6.1.2
(2022-01-18)
Bug Fixes
uws: expose additional uWebSockets.js options (https://github-redirect.dependabot.com/socketio/engine.io/issues/634";>#634)
(https://github.com/socketio/engine.io/commit/49bb7cf66518d4b49baf883a16ee1fe1ed8aed28";>49bb7cf)
uws: fix HTTP long-polling with CORS (https://github.com/socketio/engine.io/commit/45112a30d1af4cc25b21a5d658a748583cb64ed4";>45112a3)
uws: handle invalid websocket upgrades (https://github.com/socketio/engine.io/commit/8b4d6a8176db72f5c2420c5a45f0d97d33af049b";>8b4d6a8)
https://github.com/socketio/engine.io/c
[GitHub] [ranger] xyueji opened a new pull request, #165: fix deltaSyncUserTimeStamp and deltaSyncGroupTimeStamp of the ugsync
xyueji opened a new pull request, #165: URL: https://github.com/apache/ranger/pull/165 The modifyTimestamp is 20211222023353ZZ of the ldapsearch's filter when timeStampVal is 20211222023353Z,therefore the result of the ldapsearch is empty. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] datahu0702 opened a new pull request, #162: Ranger 3833
datahu0702 opened a new pull request, #162: URL: https://github.com/apache/ranger/pull/162 Fix the error in the default schema of audit log, which makes it impossible to query by 'application'. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] gongzh021 opened a new pull request, #161: Ranger 2.3 How to download the compiled installation package of ranger
gongzh021 opened a new pull request, #161: URL: https://github.com/apache/ranger/pull/161 How to download the compiled installation package of ranger 如何下载ranger编译好的安装包 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mneethiraj closed pull request #160: RANGER-3822:RangerService outputs password information in plaintext
mneethiraj closed pull request #160: RANGER-3822:RangerService outputs password information in plaintext URL: https://github.com/apache/ranger/pull/160 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] mneethiraj commented on pull request #160: RANGER-3822:RangerService outputs password information in plaintext
mneethiraj commented on PR #160: URL: https://github.com/apache/ranger/pull/160#issuecomment-1181959035 @Hoo199212 - thank you for the patch. It is now committed to master branch. ``` commit 057bba4f570998d1ead6d4c23f7b24a41e7f1e51 (HEAD -> master, origin/master, origin/HEAD) Author: Hoo199212 <18637171...@163.com> Date: Tue Jul 12 14:30:17 2022 +0800 RANGER-3822: redact password in RangerService.toString() Signed-off-by: Madhan Neethiraj ``` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] Hoo199212 opened a new pull request, #160: RANGER-3822:RangerService outputs password information in plaintext
Hoo199212 opened a new pull request, #160: URL: https://github.com/apache/ranger/pull/160 Fix the problem by modifying the RangerService::toString() -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #159: Bump jetty-server from 9.3.27.v20190418 to 10.0.10 in /hbase-agent
dependabot[bot] opened a new pull request, #159: URL: https://github.com/apache/ranger/pull/159 Bumps [jetty-server](https://github.com/eclipse/jetty.project) from 9.3.27.v20190418 to 10.0.10. Release notes Sourced from https://github.com/eclipse/jetty.project/releases";>jetty-server's releases. 10.0.10 Special Thanks to the following Eclipse Jetty community members https://github.com/jianglai";>@jianglai (Lai Jiang) https://github.com/markslater";>@markslater (markslater) https://github.com/prenagha";>@prenagha (Padraic Renaghan) Changelog https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8136";>#8136 - Cherry-pick of Improvements to PathSpec for Jetty 10.0.x https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8134";>#8134 - Improve cleanup of deflater/inflater pools for PerMessageDeflateExtension https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8088";>#8088 - Add option to configure exitVm on ShutdownMonitor from System properties https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8067";>#8067 - Wall time usage in DoSFilter RateTracker results in false positive alert https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8057";>#8057 - Support Http Response 103 (Early Hints) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8014";>#8014 - Review HttpRequest URI construction https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8008";>#8008 - Add compliance mode for LEGACY multipart parser in Jetty 10+ https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7994";>#7994 - Ability to construct a detached client Request https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7981";>#7981 - Add TRANSFER_ENCODING violation for MultiPart RFC7578 parser. (https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7976";>#7976) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7977";>#7977 - UpgradeHttpServletRequest.setAttribute & UpgradeHttpServletRequest.removeAttribute can throw NullPointerException https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7975";>#7975 - ForwardedRequestCustomizer setters do not clear existing handlers https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7953";>#7953 - Fix StatisticsHandler in the case a Handler throws exception. https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7935";>#7935 - Review HTTP/2 error handling https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7929";>#7929 - Correct requestlog formatString commented default (https://github.com/prenagha";>@prenagha) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7924";>#7924 - Fix a typo in Javadoc (https://github.com/jianglai";>@jianglai) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7918";>#7918 - PathMappings.asPathSpec does not allow root ServletPathSpec https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7891";>#7891 - Better Servlet PathMappings for Regex https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7880";>#7880 - DefaultServlet should not overwrite programmatically configured precompressed formats with defaults (https://github.com/markslater";>@markslater) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7863";>#7863 - Default servlet drops first accept-encoding header if there is more than one. (https://github.com/markslater";>@markslater) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7858";>#7858 - GZipHandler does not play nice with other handlers in HandlerCollection https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7818";>#7818 - Modifying of HTTP headers in HttpChannel.Listener#onResponseBegin is no longer possible with Jetty 10 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7808";>#7808 - Jetty 10.0.x 7801 duplicate set session cookie https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7802";>#7802 - HTTP/3 QPACK - do not expect section ack for zero required insert count https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7754";>#7754 - jetty.sh ignores JAVA_OPTIONS environment variable https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7748";>#7748 - Allow overriding of url-pattern mapping in ServletContextHandler to allow for regex or uri-template matching https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7635";>#7635 - QPACK decoder should fail connection if the encoder blocks more than SETTINGS_QPACK_BLOCKED_STREAMS https://github-redirect.dependabot.com/eclipse/jetty.project/issues/4414";>#4414 - GZipHandler not excluding inflation for specified paths https://github-redir
[GitHub] [ranger] dependabot[bot] opened a new pull request, #158: Bump jetty-server from 9.4.31.v20200723 to 10.0.10 in /knox-agent
dependabot[bot] opened a new pull request, #158: URL: https://github.com/apache/ranger/pull/158 Bumps [jetty-server](https://github.com/eclipse/jetty.project) from 9.4.31.v20200723 to 10.0.10. Release notes Sourced from https://github.com/eclipse/jetty.project/releases";>jetty-server's releases. 10.0.10 Special Thanks to the following Eclipse Jetty community members https://github.com/jianglai";>@jianglai (Lai Jiang) https://github.com/markslater";>@markslater (markslater) https://github.com/prenagha";>@prenagha (Padraic Renaghan) Changelog https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8136";>#8136 - Cherry-pick of Improvements to PathSpec for Jetty 10.0.x https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8134";>#8134 - Improve cleanup of deflater/inflater pools for PerMessageDeflateExtension https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8088";>#8088 - Add option to configure exitVm on ShutdownMonitor from System properties https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8067";>#8067 - Wall time usage in DoSFilter RateTracker results in false positive alert https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8057";>#8057 - Support Http Response 103 (Early Hints) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8014";>#8014 - Review HttpRequest URI construction https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8008";>#8008 - Add compliance mode for LEGACY multipart parser in Jetty 10+ https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7994";>#7994 - Ability to construct a detached client Request https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7981";>#7981 - Add TRANSFER_ENCODING violation for MultiPart RFC7578 parser. (https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7976";>#7976) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7977";>#7977 - UpgradeHttpServletRequest.setAttribute & UpgradeHttpServletRequest.removeAttribute can throw NullPointerException https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7975";>#7975 - ForwardedRequestCustomizer setters do not clear existing handlers https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7953";>#7953 - Fix StatisticsHandler in the case a Handler throws exception. https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7935";>#7935 - Review HTTP/2 error handling https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7929";>#7929 - Correct requestlog formatString commented default (https://github.com/prenagha";>@prenagha) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7924";>#7924 - Fix a typo in Javadoc (https://github.com/jianglai";>@jianglai) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7918";>#7918 - PathMappings.asPathSpec does not allow root ServletPathSpec https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7891";>#7891 - Better Servlet PathMappings for Regex https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7880";>#7880 - DefaultServlet should not overwrite programmatically configured precompressed formats with defaults (https://github.com/markslater";>@markslater) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7863";>#7863 - Default servlet drops first accept-encoding header if there is more than one. (https://github.com/markslater";>@markslater) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7858";>#7858 - GZipHandler does not play nice with other handlers in HandlerCollection https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7818";>#7818 - Modifying of HTTP headers in HttpChannel.Listener#onResponseBegin is no longer possible with Jetty 10 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7808";>#7808 - Jetty 10.0.x 7801 duplicate set session cookie https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7802";>#7802 - HTTP/3 QPACK - do not expect section ack for zero required insert count https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7754";>#7754 - jetty.sh ignores JAVA_OPTIONS environment variable https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7748";>#7748 - Allow overriding of url-pattern mapping in ServletContextHandler to allow for regex or uri-template matching https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7635";>#7635 - QPACK decoder should fail connection if the encoder blocks more than SETTINGS_QPACK_BLOCKED_STREAMS https://github-redirect.dependabot.com/eclipse/jetty.project/issues/4414";>#4414 - GZipHandler not excluding inflation for specified paths https://github-redir
[GitHub] [ranger] dependabot[bot] opened a new pull request, #157: Bump jetty-http from 9.3.27.v20190418 to 9.4.48.v20220622 in /hbase-agent
dependabot[bot] opened a new pull request, #157: URL: https://github.com/apache/ranger/pull/157 Bumps [jetty-http](https://github.com/eclipse/jetty.project) from 9.3.27.v20190418 to 9.4.48.v20220622. Release notes Sourced from https://github.com/eclipse/jetty.project/releases";>jetty-http's releases. 9.4.48.v20220622 End of Life Notice https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7958";>eclipse/jetty.project#7958 - Jetty 9.4.x is now at End of Community Support. (See issue for details) Critical Fix https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8184";>#8184 - All suffix globs except first fail to match if path has . character in prefix section 9.4.47.v20220610 Important https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7958";>eclipse/jetty.project#7958 - Jetty 9.4.x is now at End of Community Support. (See issue for details) Changelog https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8145";>#8145 - RegexPathSpec backport of optional group name/info lookup if regex fails https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8088";>#8088 - Add option to configure exitVm on ShutdownMonitor from System properties https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8067";>#8067 - Wall time usage in DoSFilter RateTracker results in false positive alert https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8014";>#8014 - Review HttpRequest URI construction https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7976";>#7976 - Add TRANSFER_ENCODING violation for MultiPart RFC7578 parser. https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7947";>#7947 - Improved PathSpec handling for servletName & pathInfo https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7935";>#7935 - Review HTTP/2 error handling https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7918";>#7918 - PathMappings.asPathSpec does not allow root ServletPathSpec https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7863";>#7863 - Default servlet drops first accept-encoding header if there is more than one. https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7858";>#7858 - GZipHandler does not play nice with other handlers in HandlerCollection https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7837";>#7837 - Fix StatisticsHandler in the case a Handler throws exception. https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7809";>#7809 - Jetty 9.4.x 7801 duplicate set session cookies https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7748";>#7748 - Allow overriding of url-pattern mapping in ServletContextHandler to allow for regex or uri-template matching Dependencies https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8076";>#8076 - Bump asciidoctorj-diagram to 2.2.3 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7840";>#7840 - Bump asm.version to 9.3 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8143";>#8143 - Bump biz.aQute.bndlib to 6.3.1 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8055";>#8055 - Bump error_prone_annotations to 2.14.0 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8110";>#8110 - Bump google-cloud-datastore to 2.7.0 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8098";>#8098 - Bump grpc-core to 1.47.0 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7988";>#7988 - Bump hawtio-default to 2.15.0 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7999";>#7999 - Bump jackson-annotations to 2.13.3 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8000";>#8000 - Bump jackson-core to 2.13.3 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8002";>#8002 - Bump jackson-databind to 2.13.3 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7846";>#7846 - Bump jacoco-maven-plugin to 0.8.8 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7816";>#7816 - Bump jnr-ffi to 2.2.12 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7968";>#7968 - Bump kerb-simplekdc to 2.0.2 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8060";>#8060 - Bump mariadb-java-client to 3.0.5 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7909";>#7909 - Bump maven-antrun-plugin to 3.1.0 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7841";>#7841 - Bump maven-clean-plugin to 3.2.0 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8078";>#8078 - Bump maven-invoker-plugin to 3.3.0 http
[GitHub] [ranger] viktorsomogyi closed pull request #156: RANGER-3809: Dummy impl for RangerKafkaAuthorizer#authorizeByResourceType
viktorsomogyi closed pull request #156: RANGER-3809: Dummy impl for RangerKafkaAuthorizer#authorizeByResourceType URL: https://github.com/apache/ranger/pull/156 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] viktorsomogyi opened a new pull request, #156: RANGER-3809: Dummy impl for RangerKafkaAuthorizer#authorizeByResourceType
viktorsomogyi opened a new pull request, #156: URL: https://github.com/apache/ranger/pull/156 Since the current implementation of the acls() call throws UnsupportedOperationException, it masks an authorization error if a Kafka client tries to call the InitProducerId API and doesn't have idempotent_write permission on the cluster nor it has a transactional.id configured. Until a proper implementation of the acls() method is done by RANGER-3809 we override authorizeByResourceType to get an access denied on the client side instead of an exception. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] gauravkcldcvr closed pull request #155: Beta
gauravkcldcvr closed pull request #155: Beta URL: https://github.com/apache/ranger/pull/155 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] patrik-marton opened a new pull request, #154: RANGER-3790: Ranger tagsync module should not depend on kafka server
patrik-marton opened a new pull request, #154: URL: https://github.com/apache/ranger/pull/154 This commit removes the unused kafka core dependency from the assembly xml of the tagsync module, so it will not be added to the distribution. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] opened a new pull request, #153: Bump mysql-connector-java from 5.1.31 to 8.0.28
dependabot[bot] opened a new pull request, #153: URL: https://github.com/apache/ranger/pull/153 Bumps [mysql-connector-java](https://github.com/mysql/mysql-connector-j) from 5.1.31 to 8.0.28. Changelog Sourced from https://github.com/mysql/mysql-connector-j/blob/release/8.0/CHANGES";>mysql-connector-java's changelog. Changelog https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/";>https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/ Version 8.0.29 Fix for Bug#21978230, COMMENT PARSING NOT PROPER IN PREPSTMT.EXECUTEBATCH(). Fix for Bug#81468 (23312764), MySQL server fails to rewrite batch insert when column name contains word select. Fix for Bug#106435 (33850099), 8.0.28 Connector/J has regressive in setAutoCommit after Bug#104067 (33054827). Fix for Bug#106240 (33781440), StringIndexOutOfBoundsException when VALUE is at the end of the query. Fix for Bug#106397 (33893591), Contribution: fix: fix LocalizedErrorMessages.properties doc: less then -> ... Thanks to Jianjian Song for his contribution. Fix for Bug#77924 (25710160), JDBC SOCKS SHOULD NOT PERFORM LOCAL DNS RESOLUTION. Fix for Bug#82084 (23743938), YEAR DATA TYPE RETURNS INCORRECT VALUE FOR JDBC GETCOLUMNTYPE(). Fix for Bug#106441 (33850155), Add charset mapping for utf8mb3. WL#15048, Upgrade Protocol Buffers dependency to protobuf-java-3.19.4. Fix for Bug#106065 (33726184) Contribution: BigDecimal.toPlainString no need to check decimal exponent. Thanks to Baoyi Chen for his contribution. Fix for Bug#106171 (33757217), Contribution: Remove unnecessary boxing in ResultSetImpl. Thanks to Ningpp Ning for his contribution. Fix for Bug#25701740, STMT EXECUTION FAILS FOR REPLICATION CONNECTION WHEN USECURSORFETCH=TRUE. Fix for Bug#33723611, getDefaultTransactionIsolation must return repeatable read. Fix for Bug#38954 (11749415), DATA TRUNCATION WHILE USING BIT(1) IN STORED PROCEDURE WITH INOUT TYPE. Fix for Bug#85317 (25672958), EXECUTE BATCH WILL THROW NULL POINTER EXCEPTION WHERE THE COLUMN IS BLOB! Fix for Bug#105915 (33678490), Connector/J 8 server prepared statement precision loss in execute batch. Fix for Bug#104349 (33563548), com.mysql.cj NPE. Fix for Bug#62006 (16714956), JAVA.IO.NOTSERIALIZABLEEXCEPTION: JAVA.IO.STRINGREADER WHEN PROFILESQL=TRUE. WL#14750, Better unification of query bindings. WL#14834, Support for FIDO authentication. WL#14835, Align TLS option checking across connectors. ... (truncated) Commits https://github.com/mysql/mysql-connector-j/commit/7ff2161da3899f379fb3171b6538b191b1c5c7e2";>7ff2161 Updating copyright years https://github.com/mysql/mysql-connector-j/commit/b13af389b3e0f0afe4366ecddbe7e8c541bfb606";>b13af38 Fix for DateTimeTest according to changes in MySQL server. https://github.com/mysql/mysql-connector-j/commit/5c7b7753287e1399b3437aae2253acf611acd54d";>5c7b775 Update in test for Bug#96900 (30355150). https://github.com/mysql/mysql-connector-j/commit/e1169ee5adf5561dad2814b4ede82dd167ee6e93";>e1169ee Fix for Bug#99260 (31189960), statement.setQueryTimeout,creates a database co... https://github.com/mysql/mysql-connector-j/commit/05778ef59adc154df1a81bcfbd7b5913859f4b31";>05778ef Fix for Bug#103324 (32770013), X DevAPI Collection.replaceOne() missing match... https://github.com/mysql/mysql-connector-j/commit/48219f28f8dab9855803d2c34f9d43c3da4c5393";>48219f2 Fix for Bug#105197 (33461744), Statement.executeQuery() may return non-naviga... https://github.com/mysql/mysql-connector-j/commit/24cf7e22e8f8381d076d18bce8d569812e1a0d26";>24cf7e2 Fix for Bug#105323 (33507321), README.md contains broken links. https://github.com/mysql/mysql-connector-j/commit/ad46620321e815fb22bed3c81f278cab8fbfe891";>ad46620 Fix for Bug#96900 (30355150), STATEMENT.CANCEL()CREATE A DATABASE https://github.com/mysql/mysql-connector-j/commit/4d19ea1a60ac9e97aae9074190c08c6f097a00ed";>4d19ea1 Fix for Bug#104067 (33054827), No reset autoCommit after unknown issue occurs. https://github.com/mysql/mysql-connector-j/commit/bc45d35c2d023d2e82dc6c3e2b12745389f3c3c1";>bc45d35 Fix for Bug#85223 (25656020), MYSQLSQLXML SETSTRING CRASH. Additional commits viewable in https://github.com/mysql/mysql-connector-j/compare/5.1.31...8.0.28";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter
[GitHub] [ranger] dependabot[bot] closed pull request #148: Bump gson from 2.2.4 to 2.8.9
dependabot[bot] closed pull request #148: Bump gson from 2.2.4 to 2.8.9 URL: https://github.com/apache/ranger/pull/148 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] dependabot[bot] commented on pull request #148: Bump gson from 2.2.4 to 2.8.9
dependabot[bot] commented on PR #148: URL: https://github.com/apache/ranger/pull/148#issuecomment-1156400920 Looks like com.google.code.gson:gson is up-to-date now, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] pjfanning closed pull request #150: RANGER-3783: upgrade gson due to cve
pjfanning closed pull request #150: RANGER-3783: upgrade gson due to cve URL: https://github.com/apache/ranger/pull/150 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [ranger] zhouyifan279 commented on pull request #151: RANGER-3787 Non-daemon threads started by ElasticSearchAuditDestination cause Spark application hanging
zhouyifan279 commented on PR #151: URL: https://github.com/apache/ranger/pull/151#issuecomment-1155163878 @bhavikpatel9977 Thanks for your information. Review request is created: https://reviews.apache.org/r/74022/ . -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ranger.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
