poorbarcode opened a new pull request, #25308: URL: https://github.com/apache/pulsar/pull/25308
### Motivation & Modifications https://github.com/apache/pulsar/actions/runs/22915772155/job/66558830133?pr=25170 - Upgrade to address Jetty CVEs detected by OWASP: CVE-2025-5115, CVE-2026-1605 - Upgrade to address OWASP findings on jclouds/openstack artifacts: CVE-2017-16613, CVE-2020-12689, CVE-2020-12690, CVE-2020-12691, CVE-2021-3563 - Upgrade to address sqlite-jdbc CVEs detected by OWASP: CVE-2025-6965, CVE-2025-29087 - Upgrade to reduce PostgreSQL CVEs reported via debezium-connector-postgres: CVE-2019-10210, CVE-2019-10211, CVE-2021-23214 - Upgrade to address clickhouse-jdbc shaded dependency CVEs: CVE-2024-7254, CVE-2023-3635 - Upgrade to address Elasticsearch client CVEs detected by OWASP: CVE-2025-37731, CVE-2024-52979 - Upgrade to address Debezium connector CVEs detected by OWASP: CVE-2021-32036, CVE-2017-15945 - Upgrade to address Okio CVE detected by OWASP: CVE-2023-3635 --> ### Documentation <!-- DO NOT REMOVE THIS SECTION. CHECK THE PROPER BOX ONLY. --> - [ ] `doc` <!-- Your PR contains doc changes. --> - [ ] `doc-required` <!-- Your PR changes impact docs and you will update later --> - [x] `doc-not-needed` <!-- Your PR changes do not impact docs --> - [ ] `doc-complete` <!-- Docs have been already added --> ### Matching PR in forked repository PR in forked repository: x -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
