Jonathan Leitschuh
# Security Vulnerability Fix This pull request fixes a Zip Slip vulnerability either due to an insufficient, or missing guard when unzipping zip files. Even if you deem, as the...
[](https://medium.com/@jonathan.leitschuh/want-to-take-over-the-java-ecosystem-all-you-need-is-a-mitm-1fc329d898fb?source=friends_link&sk=3c99970c55a899ad9ef41f126efcde0e) - [Want to take over the Java ecosystem? All you need is a MITM!](https://medium.com/@jonathan.leitschuh/want-to-take-over-the-java-ecosystem-all-you-need-is-a-mitm-1fc329d898fb?source=friends_link&sk=3c99970c55a899ad9ef41f126efcde0e) - [Update: Want to take over the Java ecosystem? All you need is a MITM!](https://medium.com/bugbountywriteup/update-want-to-take-over-the-java-ecosystem-all-you-need-is-a-mitm-d069d253fe23?source=friends_link&sk=8c8e52a7d57b98d0b7e541665688b454)...
[](https://medium.com/@jonathan.leitschuh/want-to-take-over-the-java-ecosystem-all-you-need-is-a-mitm-1fc329d898fb?source=friends_link&sk=3c99970c55a899ad9ef41f126efcde0e) - [Want to take over the Java ecosystem? All you need is a MITM!](https://medium.com/@jonathan.leitschuh/want-to-take-over-the-java-ecosystem-all-you-need-is-a-mitm-1fc329d898fb?source=friends_link&sk=3c99970c55a899ad9ef41f126efcde0e) - [Update: Want to take over the Java ecosystem? All you need is a MITM!](https://medium.com/bugbountywriteup/update-want-to-take-over-the-java-ecosystem-all-you-need-is-a-mitm-d069d253fe23?source=friends_link&sk=8c8e52a7d57b98d0b7e541665688b454)...
Closes #523 > Finally, to have your code merged you will have to fill out the [Contributor License Agreement](https://github.com/FasterXML/jackson/blob/master/contributor-agreement.pdf) and email a scan/photo of the result to info at fasterxml...
It seems like this plugin doesn't take advantage of gradle's incremental build system very well. Even when there have been no changes to the list of dependencies the plugin seems...
Since the `pivy-importer` needs to run as a step before the repositories are resolved the only place that this can happen is as a step inside of your `buildSrc` project....
`PythonDetails` implements `Serializable` but it takes a `Project` that is not serializable. If you try to make it so that the `PipInstallTask` gets cached you get an exception that it...
I'm using this code for our internal creation of the ivy repo. Others may find this useful. This file is in our `buildSrc`. ```groovy import com.linkedin.python.importer.ImporterCLI import org.gradle.api.DefaultTask import org.gradle.api.tasks.Input...
I've configured my build to create the `tar.gz` using the `sdist` plugin. Is there any easy way to also create an `.egg` artifact as well? Looking at the source it...
The plugin currently uses the hard coded `project.version` which may, in development enviroments, not be compliant with [PEP-0440](https://www.python.org/dev/peps/pep-0440/). Additionally, in the java/maven world, `-SNAPSHOT` is used for versions while python...