datahub icon indicating copy to clipboard operation
datahub copied to clipboard
verified publisher icon datahub-project

Bump pyspark dependency to >=3.1.3

Open novotl opened this issue 3 years ago • 1 comments

Describe the bug Currently used version of pyspark==3.0.3 https://github.com/datahub-project/datahub/blob/b5e1ed739c72b1559ead4747a42a805dac65ef78/metadata-ingestion/setup.py#L142-L145 contains a security vulnerability https://github.com/advisories/GHSA-9rr6-jpg7-9jg6 that is fixed in pyspark>=3.1.3

Expected behavior No security vulnerability

novotl avatar May 23 '22 16:05 novotl

This issue is stale because it has been open for 30 days with no activity. If you believe this is still an issue on the latest DataHub release please leave a comment with the version that you tested it with. If this is a question/discussion please head to https://slack.datahubproject.io. For feature requests please use https://feature-requests.datahubproject.io

github-actions[bot] avatar Sep 15 '22 06:09 github-actions[bot]

This issue was closed because it has been inactive for 30 days since being marked as stale.

github-actions[bot] avatar Oct 16 '22 02:10 github-actions[bot]