You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Latest ZooKeeper version mitigated this issue by upgrading underlying ZooKeeper deps. This issue is created to request release of new solr-operator chart that depends on updated ZooKeeper to remediate log4j exposure for downstream Ranger/Solr users.
Importance
Apache community depending on these charts using ZooKeeper will benefit from remediation of log4j issues.
Location
N/A
Suggestions for an improvement
Releasing a new chart for ZooKeeper operator will help solr-operator to upgrade their dependency, which will have exponential impact on the OSS community.
The text was updated successfully, but these errors were encountered:
Description
Hey team,
Latest released solr-operator (https://artifacthub.io/packages/helm/apache-solr/solr-operator) v0.8.0 has a dependency on ZooKeeper operator (https://artifacthub.io/packages/helm/banzaicloud-stable/zookeeper-operator) v0.2.15 which in turn depends on older ZooKeeper version exposing log4j 1.x usage for Solr.
Latest ZooKeeper version mitigated this issue by upgrading underlying ZooKeeper deps. This issue is created to request release of new solr-operator chart that depends on updated ZooKeeper to remediate log4j exposure for downstream Ranger/Solr users.
Importance
Apache community depending on these charts using ZooKeeper will benefit from remediation of log4j issues.
Location
N/A
Suggestions for an improvement
Releasing a new chart for ZooKeeper operator will help solr-operator to upgrade their dependency, which will have exponential impact on the OSS community.
The text was updated successfully, but these errors were encountered: