Cruise-control is the first of its kind to fully automate the dynamic workload rebalance and self-healing of a Kafka cluster. It provides great value to Kafka users by simplifying the operation of Kafka clusters.
This issue is to track the update of dependencies to address known CVEs in the following packages. Upgrading these dependencies ensures improved security and resolves any vulnerabilities that might affect the project.
Packages and CVEs
Zookeeper
Current Version: 3.8.3
Upgrade to: 3.9.3
Netty
Current Version: 4.1.100.Final
Upgrade to: 4.1.114.Final
Jetty
Current Version: 9.4.53.v20231009
Upgrade to: 9.4.56.v20240826
Nimbus JOSE+JWT
Current Version: 9.24
Upgrade to: 9.45
Upgrade the versions of the above packages to the latest versions as specified to mitigate security risks.
Issue description
This issue is to track the update of dependencies to address known CVEs in the following packages. Upgrading these dependencies ensures improved security and resolves any vulnerabilities that might affect the project.
Packages and CVEs
Zookeeper
Current Version: 3.8.3 Upgrade to: 3.9.3
Netty
Current Version: 4.1.100.Final Upgrade to: 4.1.114.Final
Jetty
Current Version: 9.4.53.v20231009 Upgrade to: 9.4.56.v20240826
Nimbus JOSE+JWT
Current Version: 9.24 Upgrade to: 9.45
Upgrade the versions of the above packages to the latest versions as specified to mitigate security risks.