Connor Koehler

icon indicating a website link https://www.connortech.me/

Results 4 issues of Connor Koehler

exclude github-actions[bot] changes from release notes

https://docs.github.com/en/repositories/releasing-projects-on-github/automatically-generated-release-notes#configuration-options

CI/CD

upgrade janino dependency to 3.1.12

Upgrading janino to mitigate CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-33546 to 3.1.12 More details from[SBOM](https://sbom.sonatype.com/report/T1-a4e79c5353879ed9b588-e3d8ea0398999-1725999270-b61bf2b10f344f5da5d7b440a33e27c1) Noticed that in the past we tried to remove it but had to revert that change here: https://github.com/NationalSecurityAgency/emissary/commit/9f789d54128bacd42cf4498e9a0e8930b9df8fcb

dependencies

Check valid filename in DropOffUtil

Attempt to resolve: https://github.com/NationalSecurityAgency/emissary/security/code-scanning/69 > To fix the problem, we need to validate the fileName parameter before using it to construct a Path object. The validation should ensure that the...

security

upgrade dnsjava to 3.6.0 and refactor its dependency management

1 comment

Address security alert and clean up downstream applications. https://github.com/NationalSecurityAgency/datawave/security/dependabot/106

dependencies