[jira] [Commented] (NIFI-2516) Extract version info into parent pom, upgrade to commons-io 2.5

[ASF subversion and git services (JIRA)]

[ 
https://issues.apache.org/jira/browse/NIFI-2516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15414207#comment-15414207
 ] 

ASF subversion and git services commented on NIFI-2516:
---

Commit 2dc094765d2b7393834ec649a5b35fb374b315fe in nifi's branch 
refs/heads/master from [~bryanrosan...@gmail.com]
[ https://git-wip-us.apache.org/repos/asf?p=nifi.git;h=2dc0947 ]

NIFI-2516 - Extract version info into parent pom, upgrade to commons-io 2.5
NIFI-2516 - Removing slf4j-api, version from slf4j-log4j12

This closes #809.


> Extract version info into parent pom, upgrade to commons-io 2.5
> ---
>
> Key: NIFI-2516
> URL: https://issues.apache.org/jira/browse/NIFI-2516
> Project: Apache NiFi
>  Issue Type: Sub-task
>Reporter: Bryan Rosander
>Assignee: Bryan Rosander
>
> Parent pom at root of nifi project should contain the dependency versions.
> commons-io 2.5 is required for its BoundedReader which facilitates putting a 
> cap on the amount of bytes read during the payload deserialization.  This is 
> useful in avoiding an arbitrarily large payload sent by a malicious client.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2516) Extract version info into parent pom, upgrade to commons-io 2.5

[Pierre Villard (JIRA)]

[ 
https://issues.apache.org/jira/browse/NIFI-2516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15414213#comment-15414213
 ] 

Pierre Villard commented on NIFI-2516:
--

Merged into master, thanks [~bryanrosan...@gmail.com]!

> Extract version info into parent pom, upgrade to commons-io 2.5
> ---
>
> Key: NIFI-2516
> URL: https://issues.apache.org/jira/browse/NIFI-2516
> Project: Apache NiFi
>  Issue Type: Sub-task
>Reporter: Bryan Rosander
>Assignee: Bryan Rosander
> Fix For: 1.0.0
>
>
> Parent pom at root of nifi project should contain the dependency versions.
> commons-io 2.5 is required for its BoundedReader which facilitates putting a 
> cap on the amount of bytes read during the payload deserialization.  This is 
> useful in avoiding an arbitrarily large payload sent by a malicious client.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2516) Extract version info into parent pom, upgrade to commons-io 2.5

[ASF GitHub Bot (JIRA)]

[ 
https://issues.apache.org/jira/browse/NIFI-2516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15414210#comment-15414210
 ] 

ASF GitHub Bot commented on NIFI-2516:
--

Github user asfgit closed the pull request at:

https://github.com/apache/nifi/pull/809


> Extract version info into parent pom, upgrade to commons-io 2.5
> ---
>
> Key: NIFI-2516
> URL: https://issues.apache.org/jira/browse/NIFI-2516
> Project: Apache NiFi
>  Issue Type: Sub-task
>Reporter: Bryan Rosander
>Assignee: Bryan Rosander
>
> Parent pom at root of nifi project should contain the dependency versions.
> commons-io 2.5 is required for its BoundedReader which facilitates putting a 
> cap on the amount of bytes read during the payload deserialization.  This is 
> useful in avoiding an arbitrarily large payload sent by a malicious client.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2516) Extract version info into parent pom, upgrade to commons-io 2.5

[ASF subversion and git services (JIRA)]

[ 
https://issues.apache.org/jira/browse/NIFI-2516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15414208#comment-15414208
 ] 

ASF subversion and git services commented on NIFI-2516:
---

Commit 2dc094765d2b7393834ec649a5b35fb374b315fe in nifi's branch 
refs/heads/master from [~bryanrosan...@gmail.com]
[ https://git-wip-us.apache.org/repos/asf?p=nifi.git;h=2dc0947 ]

NIFI-2516 - Extract version info into parent pom, upgrade to commons-io 2.5
NIFI-2516 - Removing slf4j-api, version from slf4j-log4j12

This closes #809.


> Extract version info into parent pom, upgrade to commons-io 2.5
> ---
>
> Key: NIFI-2516
> URL: https://issues.apache.org/jira/browse/NIFI-2516
> Project: Apache NiFi
>  Issue Type: Sub-task
>Reporter: Bryan Rosander
>Assignee: Bryan Rosander
>
> Parent pom at root of nifi project should contain the dependency versions.
> commons-io 2.5 is required for its BoundedReader which facilitates putting a 
> cap on the amount of bytes read during the payload deserialization.  This is 
> useful in avoiding an arbitrarily large payload sent by a malicious client.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2516) Extract version info into parent pom, upgrade to commons-io 2.5

[ASF GitHub Bot (JIRA)]

[ 
https://issues.apache.org/jira/browse/NIFI-2516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15413511#comment-15413511
 ] 

ASF GitHub Bot commented on NIFI-2516:
--

Github user brosander commented on the issue:

https://github.com/apache/nifi/pull/809
  
@pvillard31 I believe I've addressed your concerns, thanks for the feedback


> Extract version info into parent pom, upgrade to commons-io 2.5
> ---
>
> Key: NIFI-2516
> URL: https://issues.apache.org/jira/browse/NIFI-2516
> Project: Apache NiFi
>  Issue Type: Sub-task
>Reporter: Bryan Rosander
>Assignee: Bryan Rosander
>
> Parent pom at root of nifi project should contain the dependency versions.
> commons-io 2.5 is required for its BoundedReader which facilitates putting a 
> cap on the amount of bytes read during the payload deserialization.  This is 
> useful in avoiding an arbitrarily large payload sent by a malicious client.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2516) Extract version info into parent pom, upgrade to commons-io 2.5

[ASF GitHub Bot (JIRA)]

[ 
https://issues.apache.org/jira/browse/NIFI-2516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15412550#comment-15412550
 ] 

ASF GitHub Bot commented on NIFI-2516:
--

Github user pvillard31 commented on a diff in the pull request:

https://github.com/apache/nifi/pull/809#discussion_r73963178
  
--- Diff: pom.xml ---
@@ -781,6 +786,16 @@ language governing permissions and limitations under 
the License. -->
 curator-recipes
 2.11.0
 
+
+org.slf4j
+slf4j-api
+1.7.12
+
+
+org.slf4j
+slf4j-log4j12
+1.7.12
--- End diff --

For consistency, I would use the available property : ${org.slf4j.version}


> Extract version info into parent pom, upgrade to commons-io 2.5
> ---
>
> Key: NIFI-2516
> URL: https://issues.apache.org/jira/browse/NIFI-2516
> Project: Apache NiFi
>  Issue Type: Sub-task
>Reporter: Bryan Rosander
>Assignee: Bryan Rosander
>
> Parent pom at root of nifi project should contain the dependency versions.
> commons-io 2.5 is required for its BoundedReader which facilitates putting a 
> cap on the amount of bytes read during the payload deserialization.  This is 
> useful in avoiding an arbitrarily large payload sent by a malicious client.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2516) Extract version info into parent pom, upgrade to commons-io 2.5

[ASF GitHub Bot (JIRA)]

[ 
https://issues.apache.org/jira/browse/NIFI-2516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15412548#comment-15412548
 ] 

ASF GitHub Bot commented on NIFI-2516:
--

Github user pvillard31 commented on a diff in the pull request:

https://github.com/apache/nifi/pull/809#discussion_r73962918
  
--- Diff: pom.xml ---
@@ -781,6 +786,16 @@ language governing permissions and limitations under 
the License. -->
 curator-recipes
 2.11.0
 
+
+org.slf4j
+slf4j-api
--- End diff --

Already there, line 182 (with scope = provided), no?


> Extract version info into parent pom, upgrade to commons-io 2.5
> ---
>
> Key: NIFI-2516
> URL: https://issues.apache.org/jira/browse/NIFI-2516
> Project: Apache NiFi
>  Issue Type: Sub-task
>Reporter: Bryan Rosander
>Assignee: Bryan Rosander
>
> Parent pom at root of nifi project should contain the dependency versions.
> commons-io 2.5 is required for its BoundedReader which facilitates putting a 
> cap on the amount of bytes read during the payload deserialization.  This is 
> useful in avoiding an arbitrarily large payload sent by a malicious client.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2516) Extract version info into parent pom, upgrade to commons-io 2.5

[ASF GitHub Bot (JIRA)]

[ 
https://issues.apache.org/jira/browse/NIFI-2516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15412051#comment-15412051
 ] 

ASF GitHub Bot commented on NIFI-2516:
--

GitHub user brosander opened a pull request:

https://github.com/apache/nifi/pull/809

NIFI-2516 - Extract version info into parent pom, upgrade to commons-…

…io 2.5

You can merge this pull request into a Git repository by running:

$ git pull https://github.com/brosander/nifi NIFI-2516

Alternatively you can review and apply these changes as the patch at:

https://github.com/apache/nifi/pull/809.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

This closes #809


commit 5b9bae891c780ae4b87e52babb5e781a261821f4
Author: Bryan Rosander 
Date:   2016-08-08T16:31:18Z

NIFI-2516 - Extract version info into parent pom, upgrade to commons-io 2.5




> Extract version info into parent pom, upgrade to commons-io 2.5
> ---
>
> Key: NIFI-2516
> URL: https://issues.apache.org/jira/browse/NIFI-2516
> Project: Apache NiFi
>  Issue Type: Sub-task
>Reporter: Bryan Rosander
>Assignee: Bryan Rosander
>
> Parent pom at root of nifi project should contain the dependency versions.
> commons-io 2.5 is required for its BoundedReader which facilitates putting a 
> cap on the amount of bytes read during the payload deserialization.  This is 
> useful in avoiding an arbitrarily large payload sent by a malicious client.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)