Re: junk cves -- rant
On Thu, 11 Apr 2024, Tim Allison wrote: I just excluded joda-time because of this: CVE-2024-23080 https://nvd.nist.gov/vuln/detail/CVE-2024-23080 This is an NPE in joda-time version 2.12.5. That's two versions before the current...is it actually still in there. And more importantly, an NPE is not a CVE in Java. People, please. Have you seen all the rants from the Curl folks? https://daniel.haxx.se/blog/2024/02/21/disputed-not-rejected/ https://daniel.haxx.se/blog/2024/01/02/the-i-in-llm-stands-for-intelligence/ Nick
[PR] Add support for service annotations [tika-helm]
aidanthewiz opened a new pull request, #20: URL: https://github.com/apache/tika-helm/pull/20 This update allows users to specify custom annotations using the Helm values file. This is useful for configuring cloud-specific features like internal load balancers on AWS. Example command to adjust annotations with this change: ```shell helm upgrade tika ./tika-2.9.0.tgz --install -n tika \ --set image.tag=2.9.0.0 \ --set service.type=LoadBalancer \ --set "service.annotations.service\.beta\.kubernetes\.io/aws-load-balancer-internal=\"true\"" \ --set "service.annotations.service\.beta\.kubernetes\.io/aws-load-balancer-type=\"nlb\"" ``` You can also adjust the `values.yaml` file manually instead of using `--set`. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@tika.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
