Build failed in Jenkins: ManifoldCF » ManifoldCF-ant-1x #45

See Changes: -- Started by an SCM change Running as SYSTEM [EnvInject] - Loading node environment variables. Building remotely on builds35 (ubuntu) in workspace

[GitHub] [manifoldcf] dependabot[bot] commented on pull request #119: Bump xercesImpl from 2.10.0 to 2.12.2 in /connectors/searchblox

dependabot[bot] commented on PR #119: URL: https://github.com/apache/manifoldcf/pull/119#issuecomment-1151366294 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version,

[GitHub] [manifoldcf] asfgit closed pull request #119: Bump xercesImpl from 2.10.0 to 2.12.2 in /connectors/searchblox

asfgit closed pull request #119: Bump xercesImpl from 2.10.0 to 2.12.2 in /connectors/searchblox URL: https://github.com/apache/manifoldcf/pull/119 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to

[jira] [Updated] (CONNECTORS-1717) upgrade to log4j 2.17.2

[ https://issues.apache.org/jira/browse/CONNECTORS-1717?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] PJ Fanning updated CONNECTORS-1717: --- Summary: upgrade to log4j 2.17.2 (was: upgrade to connectors 2.17.2) > upgrade to

[jira] [Assigned] (CONNECTORS-1717) upgrade to connectors 2.17.2

[ https://issues.apache.org/jira/browse/CONNECTORS-1717?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Karl Wright reassigned CONNECTORS-1717: --- Assignee: Karl Wright > upgrade to connectors 2.17.2 >

[GitHub] [manifoldcf] pjfanning commented on pull request #120: upgrade commons-beanutils

pjfanning commented on PR #120: URL: https://github.com/apache/manifoldcf/pull/120#issuecomment-1151170389 https://issues.apache.org/jira/browse/CONNECTORS-1714 is resolved -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and

[GitHub] [manifoldcf] pjfanning closed pull request #120: upgrade commons-beanutils

pjfanning closed pull request #120: upgrade commons-beanutils URL: https://github.com/apache/manifoldcf/pull/120 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To

[jira] [Created] (CONNECTORS-1717) upgrade to connectors 2.17.2

PJ Fanning created CONNECTORS-1717: -- Summary: upgrade to connectors 2.17.2 Key: CONNECTORS-1717 URL: https://issues.apache.org/jira/browse/CONNECTORS-1717 Project: ManifoldCF Issue Type:

[jira] [Commented] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552161#comment-17552161 ] PJ Fanning commented on CONNECTORS-1716: Thanks [~kwri...@metacarta.com] - would it be

[jira] [Comment Edited] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

[ https://issues.apache.org/jira/browse/CONNECTORS-1715?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552149#comment-17552149 ] Karl Wright edited comment on CONNECTORS-1715 at 6/9/22 11:50 AM: --

[jira] [Commented] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

[ https://issues.apache.org/jira/browse/CONNECTORS-1715?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552149#comment-17552149 ] Karl Wright commented on CONNECTORS-1715: - [~pj.fanning], this is a blanket scan identifying

[jira] [Commented] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

[ https://issues.apache.org/jira/browse/CONNECTORS-1715?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552145#comment-17552145 ] PJ Fanning commented on CONNECTORS-1715: [~himanshu-v] any chance that you could raise

[jira] [Commented] (CONNECTORS-1714) upgrade commons-beanutils due to CVE

[ https://issues.apache.org/jira/browse/CONNECTORS-1714?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552132#comment-17552132 ] Karl Wright commented on CONNECTORS-1714: - r1901777 > upgrade commons-beanutils due to CVE

[jira] [Resolved] (CONNECTORS-1714) upgrade commons-beanutils due to CVE

[ https://issues.apache.org/jira/browse/CONNECTORS-1714?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Karl Wright resolved CONNECTORS-1714. - Fix Version/s: ManifoldCF 2.23 Resolution: Fixed Thanks, [~pj.fanning]! >

[jira] [Commented] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552090#comment-17552090 ] Karl Wright commented on CONNECTORS-1716: - Tried that URL here and it worked fine via "ant

[jira] [Commented] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552086#comment-17552086 ] Karl Wright commented on CONNECTORS-1716: - That sounds like a workable option for the

[jira] [Commented] (CONNECTORS-1714) upgrade commons-beanutils due to CVE

[ https://issues.apache.org/jira/browse/CONNECTORS-1714?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552084#comment-17552084 ] Karl Wright commented on CONNECTORS-1714: - [~pj.fanning], I did not configure or set up the

[jira] [Commented] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552081#comment-17552081 ] PJ Fanning commented on CONNECTORS-1716:

Decommission Nuxeo connector?

Hi all, The Nuxeo connector relies on a downloaded client jar that cannot be downloaded with a working secure connection (because the Nuxeo maven's SSL certificate has expired). Unless this can be addressed we have no choice but to remove the connector from our suite. Please respond if you have

[jira] [Commented] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552079#comment-17552079 ] Karl Wright commented on CONNECTORS-1716: - I looked into the nuxeo case; this is a client

[jira] [Commented] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552074#comment-17552074 ] Karl Wright commented on CONNECTORS-1716: - [~pj.fanning] I am well aware of the reason. The

[GitHub] [manifoldcf] DaddyWri commented on pull request #120: upgrade commons-beanutils

DaddyWri commented on PR #120: URL: https://github.com/apache/manifoldcf/pull/120#issuecomment-1150884030 Introducing a single dependency change for the alfresco connector in a pom is insufficient to address this issue, since Maven is not the primary build platform for ManifoldCF - ant is.

[jira] [Comment Edited] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552069#comment-17552069 ] PJ Fanning edited comment on CONNECTORS-1716 at 6/9/22 9:19 AM:

[jira] [Commented] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552069#comment-17552069 ] PJ Fanning commented on CONNECTORS-1716: [~kwri...@metacarta.com]

[jira] [Commented] (CONNECTORS-1714) upgrade commons-beanutils due to CVE

[ https://issues.apache.org/jira/browse/CONNECTORS-1714?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552068#comment-17552068 ] PJ Fanning commented on CONNECTORS-1714: [~kwri...@metacarta.com]

[jira] [Comment Edited] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552065#comment-17552065 ] Karl Wright edited comment on CONNECTORS-1716 at 6/9/22 9:15 AM: -

[GitHub] [manifoldcf] pjfanning commented on pull request #120: upgrade commons-beanutils

pjfanning commented on PR #120: URL: https://github.com/apache/manifoldcf/pull/120#issuecomment-1150877556 maven build in travis failing due to tika appearing to use the wrong commons-io jar - not sure if this is somehow related to the PR change -- This is an automated message from the

[jira] [Commented] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552065#comment-17552065 ] Karl Wright commented on CONNECTORS-1716: - Please propose a patch. I am not certain what

[jira] [Assigned] (CONNECTORS-1716) should not use http to download artifacts (need https)

[ https://issues.apache.org/jira/browse/CONNECTORS-1716?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Karl Wright reassigned CONNECTORS-1716: --- Assignee: Karl Wright > should not use http to download artifacts (need https)

[jira] [Commented] (CONNECTORS-1714) upgrade commons-beanutils due to CVE

[ https://issues.apache.org/jira/browse/CONNECTORS-1714?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552060#comment-17552060 ] Karl Wright commented on CONNECTORS-1714: - Please propose a patch. Thanks. > upgrade

[jira] [Assigned] (CONNECTORS-1714) upgrade commons-beanutils due to CVE

[ https://issues.apache.org/jira/browse/CONNECTORS-1714?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Karl Wright reassigned CONNECTORS-1714: --- Assignee: Karl Wright > upgrade commons-beanutils due to CVE >

[jira] [Assigned] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

[ https://issues.apache.org/jira/browse/CONNECTORS-1715?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Karl Wright reassigned CONNECTORS-1715: --- Assignee: Karl Wright > Vulnerabilities in 45 jars in Apache Manifold CF

[jira] [Resolved] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

[ https://issues.apache.org/jira/browse/CONNECTORS-1715?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Karl Wright resolved CONNECTORS-1715. - Fix Version/s: ManifoldCF 2.23 Resolution: Won't Fix > Vulnerabilities in 45

[jira] [Commented] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

[ https://issues.apache.org/jira/browse/CONNECTORS-1715?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17552059#comment-17552059 ] Karl Wright commented on CONNECTORS-1715: - Sorry, most of these cannot be upgraded because

[GitHub] [manifoldcf] pjfanning opened a new pull request, #121: use https in build.xml to download jars

pjfanning opened a new pull request, #121: URL: https://github.com/apache/manifoldcf/pull/121 https://issues.apache.org/jira/browse/CONNECTORS-1716 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go

[jira] [Created] (CONNECTORS-1716) should not use http to download artifacts (need https)

PJ Fanning created CONNECTORS-1716: -- Summary: should not use http to download artifacts (need https) Key: CONNECTORS-1716 URL: https://issues.apache.org/jira/browse/CONNECTORS-1716 Project:

[jira] [Updated] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

[ https://issues.apache.org/jira/browse/CONNECTORS-1715?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Himanshu updated CONNECTORS-1715: - Attachment: (was: dependency-check-report-EasySearch.html) > Vulnerabilities in 45 jars

[jira] [Updated] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

[ https://issues.apache.org/jira/browse/CONNECTORS-1715?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Himanshu updated CONNECTORS-1715: - Attachment: dependency-check-report-Apache Manifold.html > Vulnerabilities in 45 jars in

[jira] [Created] (CONNECTORS-1715) Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version

Himanshu created CONNECTORS-1715: Summary: Vulnerabilities in 45 jars in Apache Manifold CF 2.22.1 version Key: CONNECTORS-1715 URL: https://issues.apache.org/jira/browse/CONNECTORS-1715 Project:

[jira] [Created] (CONNECTORS-1714) upgrade commons-beanutils due to CVE

PJ Fanning created CONNECTORS-1714: -- Summary: upgrade commons-beanutils due to CVE Key: CONNECTORS-1714 URL: https://issues.apache.org/jira/browse/CONNECTORS-1714 Project: ManifoldCF Issue