Martijn Visser created FLINK-26699:
--------------------------------------
Summary: Update AWS SDK v1 and AWS SDK v2 to the latest versions
Key: FLINK-26699
URL: https://issues.apache.org/jira/browse/FLINK-26699
Project: Flink
Issue Type: Technical Debt
Components: Connectors / Common, Connectors / FileSystem, Connectors
/ Kinesis
Affects Versions: 1.15.0, 1.16.0, 1.14.5
Reporter: Martijn Visser
Flink currently includes multiple references to both AWS SDK v1 and AWS SDK v2.
Both of them are outdated and their transitive dependencies contain
vulnerabilities. Those don't immediately affect Flink, but they do cause false
positives in scanners.
We should at least upgrade both of them to their latest versions.
Currently used versions and latest available version (at the moment of creating
this ticket)
1.12.7 instead of 1.12.178
1.11.951 instead of 1.12.178
2.17.52 instead of 2.17.149
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
