Closed ThorbenLindhauer closed 12 months ago
@yanavasileva you can try out the new dependency check workflow by adding the workflow file temporarily to the PR: https://github.com/camunda/camunda-bpm-platform/pull/3537/files
To be completed:
There is OOM on PR 7.19 spring boot IT stage. Similar issue occurs on the 7.19 branch - already reported https://github.com/camunda/camunda-bpm-platform/issues/3616
No license changes.
❓ There are some failing PRs e.g for 7.18. Should we run them again before we merge?
There are some failing PRs e.g for 7.18. Should we run them again before we merge?
There is a green execution for 7.18: https://ci-pipeline.cambpm.camunda.cloud/blue/organizations/jenkins/7.18%2Fcambpm-ce%2Fcambpm-main/detail/PR-1081/1/pipeline
I executed the spring boot IT locally and faced no issue on 7.19 and 7.18, so I think the agents on which the stages are executed are running out of memory. I will note that in https://github.com/camunda/camunda-bpm-platform/issues/3616
So I will proceed with the merge.
I will try to update tomcat again as another vulnerability was found out.
Current status:
This change in Tomcat causes the failing tests: https://github.com/apache/tomcat/commit/e610e313765a9724bbba9ca8ceb6f14af9ae9782
I assume the problem is that the tests are designed so that not actual cross-origin requests are asserted. With the new Tomcat patch, CORS headers are removed for requests that are not actual cross-origin requests.
Also see https://bz.apache.org/bugzilla/show_bug.cgi?id=67472
When fixing the tests is not easily possible, we could also consider ignoring these tests and creating a follow-up to investigate how to rewrite them accordingly.
I was able to confirm that the failing tests were not testing cross-origin requests. After adjust the origin the tests are passing. Two tests are removed as obsolete where the same origin was used.
No license updates.
To reviewer: It will be great to manage do the review before end of tomorrow (to have enough time to merge and run the CI before the patch).
Acceptance Criteria (Required on creation)
Hints
Links
Breakdown
Dev2QA handover