[
https://issues.apache.org/jira/browse/IMPALA-15026?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18084400#comment-18084400
]
Michael Smith commented on IMPALA-15026:
----------------------------------------
Scan after merge at [https://github.com/apache/impala/security/dependabot]
looks much better, only 7 vulns across sqlparse and pytest. We can't upgrade
sqlparse due to a bug - we may need to consider forking it - and pytest upgrade
is a bit more work and under development.
> Update infra Python deps
> ------------------------
>
> Key: IMPALA-15026
> URL: https://issues.apache.org/jira/browse/IMPALA-15026
> Project: IMPALA
> Issue Type: Task
> Components: Test
> Reporter: Michael Smith
> Assignee: Michael Smith
> Priority: Major
>
> Update Python dependencies in infra/ to address CVEs highlighted by
> [dependabot|https://github.com/apache/impala/security/dependabot].
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
