PJ Fanning created ZEPPELIN-5790:
Summary: upgrade gson due to CVE-2022-25647
Key: ZEPPELIN-5790
URL: https://issues.apache.org/jira/browse/ZEPPELIN-5790
Project: Zeppelin
Issue Type:
soicem commented on PR #4433:
URL: https://github.com/apache/zeppelin/pull/4433#issuecomment-1198107226
@zjffdu thanks for letting me know :) I changed it right away !
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use
JoWonHyeung commented on code in PR #4431:
URL: https://github.com/apache/zeppelin/pull/4431#discussion_r932150767
##
conf/zeppelin-site.xml.template:
##
@@ -22,7 +22,7 @@
zeppelin.server.addr
127.0.0.1
- Server binding address
+ Server binding address. If you cannot
zjffdu commented on PR #4433:
URL: https://github.com/apache/zeppelin/pull/4433#issuecomment-1198057197
Thanks for the contribution @soicem , the version here also needs update,
https://github.com/apache/zeppelin/blob/master/.github/workflows/core.yml#L434
--
This is an automated message
vjr commented on PR #4436:
URL: https://github.com/apache/zeppelin/pull/4436#issuecomment-1197987164
> Please add a comment. When we upgrade to > jdk8, we should switch back to
jre.
Done.
I was only able to set the target version to 0.11 in Jira... Is there a way
to request
Reamer commented on PR #4436:
URL: https://github.com/apache/zeppelin/pull/4436#issuecomment-1197914197
Please add a comment. When we upgrade to > jdk8, we should switch back to
jre.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to
nelljun commented on PR #4430:
URL: https://github.com/apache/zeppelin/pull/4430#issuecomment-1197881525
I confused I updated license files even though I didn't. I changed the
answer above. Sorry for bothering
--
This is an automated message from the Apache Git Service.
To respond to the
vjr commented on PR #4436:
URL: https://github.com/apache/zeppelin/pull/4436#issuecomment-1197781754
Agreed , although I propose to have this pr merged as interim fix until
Zeppelin itself moves to newer JDK version, is this okay?
--
This is an automated message from the Apache Git
Reamer commented on PR #4436:
URL: https://github.com/apache/zeppelin/pull/4436#issuecomment-1197727478
`tools.jar` should not be used any further. In JDK 9 `tools.jar` and
`rt.jar` was even removed from the JDK.
We should better raise the dependency that `tools.jar` needs during