[ https://issues.apache.org/jira/browse/YARN-10731?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17332940#comment-17332940 ]
Akira Ajisaka commented on YARN-10731: -------------------------------------- JQuery is now 3.5.1, and now there is no CVE. Hi [~hxhefx], do you think there is any vulnerability in 3.5.1? > Please upgrade jquery to 3.6.0 > ------------------------------ > > Key: YARN-10731 > URL: https://issues.apache.org/jira/browse/YARN-10731 > Project: Hadoop YARN > Issue Type: Improvement > Components: buid, security, webapp > Affects Versions: 3.3.0, 3.2.1, 3.2.2 > Reporter: helen huang > Priority: Major > > Our fortify scan picked up a couple of security issues with the current > jquery lib being used by hadoop-yarn-common. Please upgrade it to the latest > version available (3.6.0). Thanks! -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: yarn-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: yarn-issues-h...@hadoop.apache.org