from:"Anupam Aggarwal \(Jira\)"

[jira] [Created] (FLINK-35593) Apache Kubernetes Operator Docker image does not contain Apache LICENSE

2024-06-13 Thread Anupam Aggarwal (Jira)

Anupam Aggarwal created FLINK-35593:
---

 Summary: Apache Kubernetes Operator Docker image does not contain 
Apache LICENSE
 Key: FLINK-35593
 URL: https://issues.apache.org/jira/browse/FLINK-35593
 Project: Flink
  Issue Type: Improvement
  Components: Kubernetes Operator
Affects Versions: 1.8.0
Reporter: Anupam Aggarwal


The Apache 
[LICENSE|https://github.com/apache/flink-kubernetes-operator/blob/main/LICENSE] 
is not bundled along with the Apache Flink Kubernetes Operator docker image.


{code:java}
❯ docker run -it  apache/flink-kubernetes-operator:1.8.0 bash
flink@cc372b31d067:/flink-kubernetes-operator$ ls -latr
total 104732
-rw-r--r-- 1 flink flink     40962 Mar 14 15:19 
flink-kubernetes-standalone-1.8.0.jar
-rw-r--r-- 1 flink flink 107055161 Mar 14 15:21 
flink-kubernetes-operator-1.8.0-shaded.jar
-rw-r--r-- 1 flink flink     62402 Mar 14 15:21 
flink-kubernetes-webhook-1.8.0-shaded.jar
-rw-r--r-- 1 flink flink     63740 Mar 14 15:21 NOTICE
drwxr-xr-x 2 flink flink      4096 Mar 14 15:21 licenses
drwxr-xr-x 1 root  root       4096 Mar 14 15:21 .
drwxr-xr-x 1 root  root       4096 Jun 13 12:49 .. {code}

The Apache Flink docker image by contrast bundles the license (LICENSE)
{code:java}
❯ docker run -it apache/flink:latest bash
sed: can't read /config.yaml: No such file or directory
lflink@24c2dff32a45:~$ ls -latr
total 224
-rw-r--r--  1 flink flink   1309 Mar  4 15:34 README.txt
drwxrwxr-x  2 flink flink   4096 Mar  4 15:34 log
-rw-r--r--  1 flink flink  11357 Mar  4 15:34 LICENSE
drwxrwxr-x  2 flink flink   4096 Mar  7 05:49 lib
drwxrwxr-x  6 flink flink   4096 Mar  7 05:49 examples
drwxrwxr-x  1 flink flink   4096 Mar  7 05:49 conf
drwxrwxr-x  2 flink flink   4096 Mar  7 05:49 bin
drwxrwxr-x 10 flink flink   4096 Mar  7 05:49 plugins
drwxrwxr-x  3 flink flink   4096 Mar  7 05:49 opt
-rw-rw-r--  1 flink flink 156327 Mar  7 05:49 NOTICE
drwxrwxr-x  2 flink flink   4096 Mar  7 05:49 licenses
drwxr-xr-x  1 root  root    4096 Mar 19 05:01 ..
drwxr-xr-x  1 flink flink   4096 Mar 19 05:02 .
flink@24c2dff32a45:~$ {code}




 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (FLINK-34111) Add JSON_QUOTE and JSON_UNQUOTE function

2024-07-09 Thread Anupam Aggarwal (Jira)



[ 
https://issues.apache.org/jira/browse/FLINK-34111?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17864437#comment-17864437
 ] 

Anupam Aggarwal commented on FLINK-34111:
-

Adding link to Jira for chinese translation 
https://issues.apache.org/jira/browse/FLINK-35800 

> Add JSON_QUOTE and JSON_UNQUOTE function
> 
>
> Key: FLINK-34111
> URL: https://issues.apache.org/jira/browse/FLINK-34111
> Project: Flink
>  Issue Type: Sub-task
>  Components: Table SQL / API
>Reporter: Martijn Visser
>Assignee: Jeyhun Karimov
>Priority: Major
>  Labels: pull-request-available
>
> Escapes or unescapes a JSON string removing traces of offending characters 
> that could prevent parsing.
> Proposal:
> - JSON_QUOTE: Quotes a string by wrapping it with double quote characters and 
> escaping interior quote and other characters, then returning the result as a 
> utf8mb4 string. Returns NULL if the argument is NULL.
> - JSON_UNQUOTE: Unquotes value and returns the result as a string. Returns 
> NULL if the argument is NULL. An error occurs if the value starts and ends 
> with double quotes but is not a valid JSON string literal.
> The following characters are reserved in JSON and must be properly escaped to 
> be used in strings:
> Backspace is replaced with \b
> Form feed is replaced with \f
> Newline is replaced with \n
> Carriage return is replaced with \r
> Tab is replaced with \t
> Double quote is replaced with \"
> Backslash is replaced with \\
> This function exists in MySQL: 
> - 
> https://dev.mysql.com/doc/refman/8.0/en/json-creation-functions.html#function_json-quote
> - 
> https://dev.mysql.com/doc/refman/8.0/en/json-modification-functions.html#function_json-unquote
> It's still open in Calcite CALCITE-3130



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (FLINK-35800) Update chinese documentation for json_(un)quote function

2024-07-09 Thread Anupam Aggarwal (Jira)

Anupam Aggarwal created FLINK-35800:
---

 Summary: Update chinese documentation for json_(un)quote function
 Key: FLINK-35800
 URL: https://issues.apache.org/jira/browse/FLINK-35800
 Project: Flink
  Issue Type: Improvement
  Components: chinese-translation
Reporter: Anupam Aggarwal


Update chinese documentation corresponding to `json_quote` and `json_unquote` 
function

as per instructions  in 
[https://github.com/apache/flink/blob/master/docs/data/sql_functions_zh.yml] 

 

Changes are in
PR link - [https://github.com/apache/flink/pull/24967] 

[https://github.com/apache/flink/blob/4267018323dc3bfa1d65ee9fcb49b024e03d/docs/data/sql_functions.yml#L380]

 

Changes would be needed in file
[https://github.com/apache/flink/blob/master/docs/data/sql_functions_zh.yml] 

Jira for functions - https://issues.apache.org/jira/browse/FLINK-34111 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (FLINK-36920) Update org.quartz-schedule:quartz

2024-12-17 Thread Anupam Aggarwal (Jira)

Anupam Aggarwal created FLINK-36920:
---

 Summary: Update org.quartz-schedule:quartz
 Key: FLINK-36920
 URL: https://issues.apache.org/jira/browse/FLINK-36920
 Project: Flink
  Issue Type: Improvement
  Components: Kubernetes Operator
Affects Versions: 1.10.0
Reporter: Anupam Aggarwal


Update dependency on org.quartz-scheduler:quartz used in flink-autoscaler 
module from 2.3.2 to 2.4.0

 

*Vulnerability info:*
cve-2023-39017

quartz-jobs 2.3.2 and below was discovered to contain a code injection 
vulnerability in the component 
org.quartz.jobs.ee.jms.SendQueueMessageJob.execute. This vulnerability is 
exploited via passing an unchecked argument. NOTE: this is disputed by multiple 
parties because it is not plausible that untrusted user input would reach the 
code location where injection must occur.

More details are at: [https://nvd.nist.gov/vuln/detail/cve-2023-39017] 

*Proposed fix*
Bumping the dependency from 2.3.2 to 2.4.0 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (FLINK-37078) Update jackson-mapper-asl dependency

2025-01-08 Thread Anupam Aggarwal (Jira)

Anupam Aggarwal created FLINK-37078:
---

 Summary: Update jackson-mapper-asl dependency
 Key: FLINK-37078
 URL: https://issues.apache.org/jira/browse/FLINK-37078
 Project: Flink
  Issue Type: Bug
  Components: FileSystems
Reporter: Anupam Aggarwal


Flink includes org.codehaus.jackson:jackson-mapper-asl:1.9.13 which contains 
[CVE-2019-10202|https://nvd.nist.gov/vuln/detail/cve-2019-10202]


There seems to be a version - 
org.codehaus.jackson/jackson-mapper-asl/1.9.14.jdk17-redhat-1 (in redhat GA 
repository) which is not flagged as vulnerable 

More details at [https://nvd.nist.gov/vuln/detail/cve-2019-10202] 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (FLINK-35593) Apache Kubernetes Operator Docker image does not contain Apache LICENSE

[jira] [Commented] (FLINK-34111) Add JSON_QUOTE and JSON_UNQUOTE function

[jira] [Created] (FLINK-35800) Update chinese documentation for json_(un)quote function

[jira] [Created] (FLINK-36920) Update org.quartz-schedule:quartz

[jira] [Created] (FLINK-37078) Update jackson-mapper-asl dependency

5 matches

Site Navigation

Mail list logo

Footer information