subject:"\[GitHub\] \[spark\] HyukjinKwon commented on pull request #29334\: \[SPARK\-32495\]\[2.4\] Update jackson versions to a maintained release, to fix various security vulnerabilities."

[GitHub] [spark] HyukjinKwon commented on pull request #29334: [SPARK-32495][2.4] Update jackson versions to a maintained release, to fix various security vulnerabilities.

2020-08-04 Thread GitBox

HyukjinKwon commented on pull request #29334: URL: https://github.com/apache/spark/pull/29334#issuecomment-668986454 For the PR itself, I agree with @srowen's and @dongjoon-hyun comments at https://github.com/apache/spark/pull/29334#issuecomment-668044607 and

[GitHub] [spark] HyukjinKwon commented on pull request #29334: [SPARK-32495][2.4] Update jackson versions to a maintained release, to fix various security vulnerabilities.

2020-08-04 Thread GitBox

HyukjinKwon commented on pull request #29334: URL: https://github.com/apache/spark/pull/29334#issuecomment-668985839 Yes, I think it does. That was one of reasons why I was hesitant. FYI, there was a bit of discussions and updates about resources at SPARK-32264. Given that the PRs

[GitHub] [spark] HyukjinKwon commented on pull request #29334: [SPARK-32495][2.4] Update jackson versions to a maintained release, to fix various security vulnerabilities.

2020-08-04 Thread GitBox

HyukjinKwon commented on pull request #29334: URL: https://github.com/apache/spark/pull/29334#issuecomment-668981971 @ScrapCodes, yes, the m2 is corrupted in Jenkins machine. In the master, this dependency check is being skipped in Jenkins and GitHub Actions build runs instead. In