Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
None
-
None
Description
Several framework and extension components have direct dependencies on various versions of Google Guava. Older versions of Google Guava have multiple vulnerabilities, and the library itself is almost 3 MB. For components that have minimal usage of Guava, implementations should be refactored to use available JDK utilities or alternative caching libraries that have a smaller footprint.
Attachments
Issue Links
- causes
-
NIFI-9727 Fix IndexOutOfBoundsException in CorrelationAttributePartitioner
- Resolved
-
NIFI-10394 PutBigQueryBatch - Invalid use of BasicClientConnManager: connection still allocated.
- Closed
- is fixed by
-
NIFI-9898 PutGCSObject fails when connects via proxy
- Resolved
- relates to
-
NIFI-7554 Upgrade guava version
- Resolved
- links to