Add batching processor base type AbstractBatchingProcessor (#14554)
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2023-5685Path to dependency file: /plugins/repository-hdfs/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.xnio/xnio-api/3.8.8.Final/1ba9c8b9a8dea1c6cd656155943e6d4c2c631fa7/xnio-api-3.8.8.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.xnio/xnio-api/3.8.8.Final/1ba9c8b9a8dea1c6cd656155943e6d4c2c631fa7/xnio-api-3.8.8.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.xnio/xnio-api/3.8.8.Final/1ba9c8b9a8dea1c6cd656155943e6d4c2c631fa7/xnio-api-3.8.8.Final.jar Dependency Hierarchy: -> hdfs-fixture-3.0.0-SNAPSHOT (Root Library) -> kerb-admin-2.0.3.jar -> ❌ xnio-api-3.8.8.Final.jar (Vulnerable Library) |
 High |
7.5 | xnio-api-3.8.8.Final.jar | #14183 | |
CVE-2023-52428Path to dependency file: /test/fixtures/hdfs-fixture/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.nimbusds/nimbus-jose-jwt/9.31/229ba7b31d1f886968896c48aeeba5a1586b00bc/nimbus-jose-jwt-9.31.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.nimbusds/nimbus-jose-jwt/9.31/229ba7b31d1f886968896c48aeeba5a1586b00bc/nimbus-jose-jwt-9.31.jar Dependency Hierarchy: -> hdfs-fixture-3.0.0-SNAPSHOT (Root Library) -> hadoop-minicluster-3.4.0.jar -> hadoop-common-3.4.0.jar -> hadoop-auth-3.4.0.jar -> ❌ nimbus-jose-jwt-9.31.jar (Vulnerable Library) |
High |
7.5 | nimbus-jose-jwt-9.31.jar | Upgrade to version: com.nimbusds:nimbus-jose-jwt:9.37.2 | #14183 |
CVE-2023-50572Path to dependency file: /test/fixtures/hdfs-fixture/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jline/jline/3.22.0/512dde71f1ba9cb87f318e4e1e3acc77dc67a712/jline-3.22.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jline/jline/3.22.0/512dde71f1ba9cb87f318e4e1e3acc77dc67a712/jline-3.22.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jline/jline/3.22.0/512dde71f1ba9cb87f318e4e1e3acc77dc67a712/jline-3.22.0.jar Dependency Hierarchy: -> hdfs-fixture-3.0.0-SNAPSHOT (Root Library) -> kerb-admin-2.0.3.jar -> ❌ jline-3.22.0.jar (Vulnerable Library) |
 Medium |
5.5 | jline-3.22.0.jar | Upgrade to version: org.jline:jline-console:3.25.0,org.jline:jline:3.25.0 | #14183 |
CVE-2024-29133Path to dependency file: /test/fixtures/hdfs-fixture/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-configuration2/2.8.0/6a76acbe14d2c01d4758a57171f3f6a150dbd462/commons-configuration2-2.8.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-configuration2/2.8.0/6a76acbe14d2c01d4758a57171f3f6a150dbd462/commons-configuration2-2.8.0.jar Dependency Hierarchy: -> hdfs-fixture-3.0.0-SNAPSHOT (Root Library) -> hadoop-minicluster-3.4.0.jar -> hadoop-common-3.4.0.jar -> ❌ commons-configuration2-2.8.0.jar (Vulnerable Library) |
Medium |
4.4 | commons-configuration2-2.8.0.jar | Upgrade to version: org.apache.commons:commons-configuration2:2.10.1 | #14183 |
CVE-2024-29131Path to dependency file: /test/fixtures/hdfs-fixture/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-configuration2/2.8.0/6a76acbe14d2c01d4758a57171f3f6a150dbd462/commons-configuration2-2.8.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-configuration2/2.8.0/6a76acbe14d2c01d4758a57171f3f6a150dbd462/commons-configuration2-2.8.0.jar Dependency Hierarchy: -> hdfs-fixture-3.0.0-SNAPSHOT (Root Library) -> hadoop-minicluster-3.4.0.jar -> hadoop-common-3.4.0.jar -> ❌ commons-configuration2-2.8.0.jar (Vulnerable Library) |
Medium |
4.4 | commons-configuration2-2.8.0.jar | Upgrade to version: org.apache.commons:commons-configuration2:2.10.1 | #14183 |
Total libraries scanned: 760
Scan token: 030bb3e3db544917a5b997ec85b092ed