search

confluentinc / kafka-connect-storage-common

Shared software among connectors that target distributed filesystems and cloud storage.
Other
3 stars 154 forks source link

update jetty version to match kafka-rest, pin additional jetty libraries #311

Closed janjwerner-confluent closed 11 months ago

janjwerner-confluent commented 1 year ago

Problem

Parent pom defines outdated version of jetty that could lead to bringing outdated, vulnerable dependencies by connectors using kafka-connect-storage pom

Solution

Bump version of the dependency, specify dependencies in the dependencyManagement to instruct artifacts built using this pom to use the updated versions.

Does this solution apply anywhere else?
If yes, where?

Test Strategy

Testing done:

Release Plan

janjwerner-confluent commented 11 months ago

stale, unreviewed since March