Hi Spark Community,
I hope you are doing well.
We have identified high and critical CVEs related to the jackson-mapper-asl
package used in Apache Spark 3.5.5. We would like to understand if there are
any official fixes or recommended mitigation steps available for these
vulnerabilities.
| CVE
Hi Spark Community,
I am using the official Docker image `apache/spark-py:v3.4.0` and installing
`pyspark==3.4.0` on top of it. However, I have encountered multiple security
vulnerabilities related to outdated dependencies in the base image.
Issues:
1. Security Concerns:
- Prisma scan report
