Skip to content

Bump @modelcontextprotocol/sdk and @angular/cli in /flink-runtime-web/web-dashboard #9

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: release-1.20.3.il
Choose a base branch
from
Open

Bump @modelcontextprotocol/sdk and @angular/cli in /flink-runtime-web/web-dashboard #9

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Dec 22, 2025

Bumps @modelcontextprotocol/sdk to 1.24.0 and updates ancestor dependency @angular/cli. These dependencies need to be updated together.

Updates @modelcontextprotocol/sdk from 1.13.3 to 1.24.0

Release notes

Sourced from @​modelcontextprotocol/sdk's releases.

1.24.0

Summary

This release brings us up to speed with the latest MCP spec 2025-11-25. Take a look at the latest spec as well as the release blog post.

What's Changed

New Contributors

Full Changelog: modelcontextprotocol/typescript-sdk@1.23.0...1.24.0

1.23.1

Fixed:

... (truncated)

Commits
  • 356b7e6 chore: bump version for release (#1215)
  • 09623e2 Merge commit from fork
  • cf51343 feat: backwards-compatible createMessage overloads for SEP-1577 (#1212)
  • 8204126 fix: allow zod 4 transformations (#1213)
  • 6083600 Modify Origin header validation in validateRequestHeaders (streamableHttp.ts ...
  • a6ee2cb fix: normalize null to undefined in ElicitResultSchema content field (#1204)
  • 4b651b8 feat: add closeStandaloneSSEStream for GET stream polling (#1203)
  • 5ceabfb fix: normalize headers in sse transport (#856)
  • f67fc2f fix: improve SSE reconnection behavior (#1191)
  • fab7e1e feat: add closeSSEStream callback to RequestHandlerExtra (#1166)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by pcarleton, a new releaser for @​modelcontextprotocol/sdk since your current version.


Updates @angular/cli from 20.1.3 to 20.3.13

Release notes

Sourced from @​angular/cli's releases.

20.3.13

@​angular/cli

Commit Description
fix - cfbb61602 update @modelcontextprotocol/sdk to v1.24.0

20.3.12

@​angular/build

Commit Description
fix - 25bb7e65c ensure correct URL joining for prerender routes

@​angular/ssr

Commit Description
fix - cceb86296 handle X-Forwarded-Prefix and APP_BASE_HREF in redirects
fix - 1abe68ad8 prevent redirect loop with encoded query parameters

20.3.11

@​angular/build

Commit Description
fix - 8053f2d92 ensure ɵgetOrCreateAngularServerApp is always defined after errors

20.3.10

@​schematics/angular

Commit Description
fix - c854a719b correct tsconfig.spec.json include for spec files

@​angular/build

Commit Description
fix - b3908f68e do not remove @angular/localize when having external packages (#31721)

20.3.9

@​angular/ssr

Commit Description
fix - 08e07e338 improve locale handling in app-engine
fix - 683697ebc improve route matching for wildcard routes

20.3.8

@​angular-devkit/build-angular

Commit Description
fix - 813cba9b9 expand jest and jest-environment-jsdom to allow version 30

@​angular/build

Commit Description
fix - 542973ab0 add adapters to new reporter
fix - f0885691d ensure locale data plugin runs before other plugins

... (truncated)

Changelog

Sourced from @​angular/cli's changelog.

20.3.13 (2025-12-03)

@​angular/cli

Commit Type Description
cfbb61602 fix update @modelcontextprotocol/sdk to v1.24.0

21.1.0-next.0 (2025-11-26)

@​angular/cli

Commit Type Description
c3c9ac506 feat Add MCP tools for building and running devservers

@​schematics/angular

Commit Type Description
36cf3afb4 feat add browserMode option to jasmine-vitest schematic
18cf6c51b fix add MCP configuration file to new workspaces

@​angular/build

Commit Type Description
ad99e00ad fix simplify SSL handling for ng serve with SSR (#31722)

21.0.1 (2025-11-26)

@​angular/cli

Commit Type Description
363496ae0 fix ensure dependencies are resolved correctly for node modules directory check

@​schematics/angular

Commit Type Description
2f58705cb fix add missing imports for lifecycle hooks in jasmine-vitest migration

... (truncated)

Commits
  • 948869d release: cut the v20.3.13 release
  • cfbb616 fix(@​angular/cli): update @modelcontextprotocol/sdk to v1.24.0
  • d4ca7b7 release: cut the v20.3.12 release
  • cceb862 fix(@​angular/ssr): handle X-Forwarded-Prefix and APP_BASE_HREF in redirects
  • 25bb7e6 fix(@​angular/build): ensure correct URL joining for prerender routes
  • 1abe68a fix(@​angular/ssr): prevent redirect loop with encoded query parameters
  • 4dfc314 release: cut the v20.3.11 release
  • 8053f2d fix(@​angular/build): ensure ɵgetOrCreateAngularServerApp is always defined ...
  • 904ef7a release: cut the v20.3.10 release
  • c854a71 fix(@​schematics/angular): correct tsconfig.spec.json include for spec files
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump @modelcontextprotocol/sdk and @angular/cli
1cbb48a 
Bumps [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) to 1.24.0 and updates ancestor dependency [@angular/cli](https://github.com/angular/angular-cli). These dependencies need to be updated together.


Updates `@modelcontextprotocol/sdk` from 1.13.3 to 1.24.0
- [Release notes](https://github.com/modelcontextprotocol/typescript-sdk/releases)
- [Commits](modelcontextprotocol/typescript-sdk@1.13.3...1.24.0)

Updates `@angular/cli` from 20.1.3 to 20.3.13
- [Release notes](https://github.com/angular/angular-cli/releases)
- [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md)
- [Commits](angular/angular-cli@20.1.3...20.3.13)

---
updated-dependencies:
- dependency-name: "@modelcontextprotocol/sdk"
  dependency-version: 1.24.0
  dependency-type: indirect
- dependency-name: "@angular/cli"
  dependency-version: 20.3.13
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Dec 22, 2025
@ImagineBuildBot
Copy link

ImagineBuildBot commented Dec 23, 2025

Logo
Checkmarx SAST - Scan Summary & Details

Cx-SAST Summary

Total of 235 vulnerabilities
High 21 High
Medium 199 Medium
Low 0 Low
Info 15 Info

Violation Summary

High 20 HIGH
Medium 162 MEDIUM

View more details on Checkmarx UI

Cx-SAST Details

Click to see details
Lines Severity Category File Link
495 MEDIUM Unchecked_Input_for_Loop_Condition flink-runtime-web/src/test/java/org/apache/flink/runtime/webmonitor/WebFrontendITCase.java Checkmarx
222 MEDIUM Unchecked_Input_for_Loop_Condition flink-runtime/src/main/java/org/apache/flink/runtime/blob/BlobClient.java Checkmarx
390 MEDIUM Unchecked_Input_for_Loop_Condition flink-streaming-java/src/main/java/org/apache/flink/streaming/api/operators/collect/CollectSinkFunction.java Checkmarx
97 MEDIUM Unchecked_Input_for_Loop_Condition flink-runtime/src/main/java/org/apache/flink/runtime/blob/BlobServerConnection.java Checkmarx
106 MEDIUM Unchecked_Input_for_Loop_Condition flink-runtime/src/main/java/org/apache/flink/runtime/blob/BlobOutputStream.java Checkmarx
83 109 MEDIUM Unchecked_Input_for_Loop_Condition flink-runtime/src/main/java/org/apache/flink/runtime/operators/sort/MergeIterator.java Checkmarx
80 MEDIUM Stored_Command_Injection flink-external-resources/flink-external-resource-gpu/src/main/java/org/apache/flink/externalresource/gpu/GPUDriver.java Checkmarx
136 MEDIUM Stored_Absolute_Path_Traversal flink-yarn-tests/src/test/java/org/apache/flink/yarn/testjob/YarnTestArchiveJob.java Checkmarx
223 MEDIUM Stored_Absolute_Path_Traversal flink-end-to-end-tests/flink-end-to-end-tests-sql/src/test/java/org/apache/flink/table/sql/SqlITCaseBase.java Checkmarx
153 MEDIUM Stored_Absolute_Path_Traversal flink-table/flink-sql-client/src/test/java/org/apache/flink/table/client/cli/CliClientTest.java Checkmarx
303 MEDIUM Stored_Absolute_Path_Traversal flink-core/src/main/java/org/apache/flink/util/IOUtils.java Checkmarx
266 291 MEDIUM Stored_Absolute_Path_Traversal flink-tests/src/test/java/org/apache/flink/test/streaming/runtime/CacheITCase.java Checkmarx
339 MEDIUM Stored_Absolute_Path_Traversal tools/ci/flink-ci-tools/src/main/java/org/apache/flink/tools/ci/licensecheck/JarFileChecker.java Checkmarx
136 224 MEDIUM Stored_Absolute_Path_Traversal flink-connectors/flink-connector-files/src/test/java/org/apache/flink/connector/file/src/FileSourceTextLinesITCase.java Checkmarx
57 79 MEDIUM Stored_Absolute_Path_Traversal flink-docs/src/test/java/org/apache/flink/docs/rest/OpenApiSpecGeneratorTest.java Checkmarx
333 MEDIUM Stored_Absolute_Path_Traversal flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/canal/CanalJsonSerDeSchemaTest.java Checkmarx
272 MEDIUM Stored_Absolute_Path_Traversal flink-connectors/flink-connector-hive/src/test/java/org/apache/flink/connectors/hive/FlinkEmbeddedHiveRunner.java Checkmarx
73 MEDIUM Stored_Absolute_Path_Traversal flink-runtime/src/test/java/org/apache/flink/runtime/io/network/partition/hybrid/tiered/file/ProducerMergedPartitionFileWriterTest.java Checkmarx
1020 MEDIUM Stored_Absolute_Path_Traversal flink-runtime/src/test/java/org/apache/flink/runtime/rest/RestServerEndpointITCase.java Checkmarx
292 MEDIUM Stored_Absolute_Path_Traversal flink-state-backends/flink-statebackend-rocksdb/src/test/java/org/apache/flink/contrib/streaming/state/RocksDBStateUploaderTest.java Checkmarx
164 165 MEDIUM Stored_Absolute_Path_Traversal flink-runtime/src/test/java/org/apache/flink/runtime/rest/MultipartUploadExtension.java Checkmarx
266 MEDIUM Stored_Absolute_Path_Traversal flink-streaming-java/src/test/java/org/apache/flink/streaming/api/functions/sink/filesystem/BucketStateSerializerTest.java Checkmarx
304 MEDIUM Stored_Absolute_Path_Traversal flink-test-utils-parent/flink-connector-test-utils/src/main/java/org/apache/flink/connector/testframe/container/FlinkImageBuilder.java Checkmarx
355 MEDIUM Stored_Absolute_Path_Traversal flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/debezium/DebeziumJsonSerDeSchemaTest.java Checkmarx
105 259 MEDIUM Stored_Absolute_Path_Traversal flink-runtime/src/test/java/org/apache/flink/runtime/blob/FileSystemBlobStoreTest.java Checkmarx
142 MEDIUM Stored_Absolute_Path_Traversal flink-core/src/main/java/org/apache/flink/util/FileUtils.java Checkmarx
265 MEDIUM Stored_Absolute_Path_Traversal flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/maxwell/MaxwellJsonSerDerTest.java Checkmarx
78 82 MEDIUM Stored_Absolute_Path_Traversal flink-python/src/test/java/org/apache/flink/python/util/CompressionUtilsTest.java Checkmarx
258 MEDIUM Stored_Absolute_Path_Traversal flink-formats/flink-avro/src/test/java/org/apache/flink/formats/avro/typeutils/AvroSerializerSnapshotTest.java Checkmarx
59 MEDIUM Stored_Absolute_Path_Traversal flink-test-utils-parent/flink-test-utils/src/main/java/org/apache/flink/test/util/FileUtils.java Checkmarx
71 MEDIUM Stored_Absolute_Path_Traversal flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/ogg/OggJsonSerDeSchemaTest.java Checkmarx
50 MEDIUM Stored_Absolute_Path_Traversal flink-clients/src/test/java/org/apache/flink/client/cli/CliFrontendTestUtils.java Checkmarx
316 MEDIUM Stored_Absolute_Path_Traversal flink-core/src/test/java/org/apache/flink/testutils/ClassLoaderUtils.java Checkmarx
84 168 MEDIUM Stored_Absolute_Path_Traversal flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/debezium/DebeziumJsonFileSystemITCase.java Checkmarx
88 MEDIUM Stored_Absolute_Path_Traversal flink-formats/flink-hadoop-bulk/src/test/java/org/apache/flink/formats/hadoop/bulk/HadoopPathBasedPendingFileRecoverableSerializerMigrationTest.java Checkmarx
167 MEDIUM Stored_Absolute_Path_Traversal flink-end-to-end-tests/flink-end-to-end-tests-hive/src/test/java/org/apache/flink/tests/hive/HiveITCase.java Checkmarx
61 68 77 MEDIUM Stored_Absolute_Path_Traversal flink-end-to-end-tests/flink-end-to-end-tests-common/src/test/java/org/apache/flink/tests/util/util/FileUtilsTest.java Checkmarx
212 MEDIUM Stored_Absolute_Path_Traversal flink-runtime-web/src/test/java/org/apache/flink/runtime/webmonitor/WebFrontendITCase.java Checkmarx
85 91 MEDIUM Stored_Absolute_Path_Traversal flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/ogg/OggJsonFileSystemITCase.java Checkmarx
284 MEDIUM Stored_Absolute_Path_Traversal flink-connectors/flink-connector-files/src/test/java/org/apache/flink/connector/file/sink/writer/FileWriterBucketStateSerializerMigrationTest.java Checkmarx
512 MEDIUM Stored_Absolute_Path_Traversal flink-runtime/src/main/java/org/apache/flink/runtime/blob/BlobUtils.java Checkmarx
41 53 91 MEDIUM Stored_Absolute_Path_Traversal flink-test-utils-parent/flink-test-utils-junit/src/main/java/org/apache/flink/testutils/junit/utils/TempDirUtils.java Checkmarx
407 408 MEDIUM Stored_Absolute_Path_Traversal flink-core/src/test/java/org/apache/flink/util/FileUtilsTest.java Checkmarx
520 MEDIUM Stored_Absolute_Path_Traversal flink-core/src/test/java/org/apache/flink/api/common/typeutils/TypeSerializerUpgradeTestBase.java Checkmarx
58 MEDIUM Stored_Absolute_Path_Traversal tools/ci/flink-ci-tools/src/main/java/org/apache/flink/tools/ci/utils/notice/NoticeParser.java Checkmarx
154 MEDIUM Stored_Absolute_Path_Traversal flink-clients/src/test/java/org/apache/flink/client/testjar/ClasspathProviderExtension.java Checkmarx
132 MEDIUM Stored_Absolute_Path_Traversal flink-end-to-end-tests/flink-distributed-cache-via-blob-test/src/main/java/org/apache/flink/streaming/tests/DistributedCacheViaBlobTestProgram.java Checkmarx
50 107 MEDIUM Stored_Absolute_Path_Traversal flink-core/src/test/java/org/apache/flink/core/fs/RefCountedFileWithStreamTest.java Checkmarx
92 96 100 MEDIUM Stored_Absolute_Path_Traversal flink-java/src/test/java/org/apache/flink/api/java/utils/ParameterToolTest.java Checkmarx
529 530 MEDIUM Stored_Absolute_Path_Traversal flink-runtime/src/test/java/org/apache/flink/runtime/rest/FileUploadHandlerITCase.java Checkmarx
84 MEDIUM Stored_Absolute_Path_Traversal flink-end-to-end-tests/flink-end-to-end-tests-common/src/main/java/org/apache/flink/tests/util/TestUtils.java Checkmarx
451 MEDIUM Stored_Absolute_Path_Traversal flink-end-to-end-tests/flink-end-to-end-tests-common/src/main/java/org/apache/flink/tests/util/flink/FlinkDistribution.java Checkmarx
104 150 MEDIUM Stored_Absolute_Path_Traversal flink-connectors/flink-connector-files/src/test/java/org/apache/flink/connector/file/sink/FileSinkCommittableSerializerMigrationTest.java Checkmarx
80 94 120 135 151 183 MEDIUM Same_Seed_in_PRNG flink-scala/src/test/scala/org/apache/flink/api/scala/runtime/TupleSerializerTest.scala Checkmarx
1512 1515 1518 1521 1527 1530 1531 MEDIUM Same_Seed_in_PRNG flink-table/flink-table-planner/src/test/scala/org/apache/flink/table/planner/expressions/ScalarFunctionsTest.scala Checkmarx
39 MEDIUM Same_Seed_in_PRNG flink-tests/src/test/scala/org/apache/flink/api/scala/manual/MassiveCaseClassSortingITCase.scala Checkmarx
495 MEDIUM SSRF flink-runtime-web/src/test/java/org/apache/flink/runtime/webmonitor/WebFrontendITCase.java Checkmarx
97 MEDIUM Privacy_Violation flink-runtime/src/main/java/org/apache/flink/runtime/security/modules/HadoopModule.java Checkmarx
231 MEDIUM Missing_HSTS_Header flink-end-to-end-tests/flink-end-to-end-tests-common/src/main/java/org/apache/flink/tests/util/AutoClosableProcess.java Checkmarx
136 MEDIUM Input_Path_Not_Canonicalized flink-yarn-tests/src/test/java/org/apache/flink/yarn/testjob/YarnTestArchiveJob.java Checkmarx
520 MEDIUM Input_Path_Not_Canonicalized flink-core/src/test/java/org/apache/flink/api/common/typeutils/TypeSerializerUpgradeTestBase.java Checkmarx
41 53 91 MEDIUM Input_Path_Not_Canonicalized flink-test-utils-parent/flink-test-utils-junit/src/main/java/org/apache/flink/testutils/junit/utils/TempDirUtils.java Checkmarx
50 MEDIUM Input_Path_Not_Canonicalized flink-clients/src/test/java/org/apache/flink/client/cli/CliFrontendTestUtils.java Checkmarx
258 MEDIUM Input_Path_Not_Canonicalized flink-formats/flink-avro/src/test/java/org/apache/flink/formats/avro/typeutils/AvroSerializerSnapshotTest.java Checkmarx
84 MEDIUM Input_Path_Not_Canonicalized flink-end-to-end-tests/flink-end-to-end-tests-common/src/main/java/org/apache/flink/tests/util/TestUtils.java Checkmarx
78 82 MEDIUM Input_Path_Not_Canonicalized flink-python/src/test/java/org/apache/flink/python/util/CompressionUtilsTest.java Checkmarx
223 MEDIUM Input_Path_Not_Canonicalized flink-end-to-end-tests/flink-end-to-end-tests-sql/src/test/java/org/apache/flink/table/sql/SqlITCaseBase.java Checkmarx
451 MEDIUM Input_Path_Not_Canonicalized flink-end-to-end-tests/flink-end-to-end-tests-common/src/main/java/org/apache/flink/tests/util/flink/FlinkDistribution.java Checkmarx
142 MEDIUM Input_Path_Not_Canonicalized flink-core/src/main/java/org/apache/flink/util/FileUtils.java Checkmarx
104 150 MEDIUM Input_Path_Not_Canonicalized flink-connectors/flink-connector-files/src/test/java/org/apache/flink/connector/file/sink/FileSinkCommittableSerializerMigrationTest.java Checkmarx
265 MEDIUM Input_Path_Not_Canonicalized flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/maxwell/MaxwellJsonSerDerTest.java Checkmarx
85 91 MEDIUM Input_Path_Not_Canonicalized flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/ogg/OggJsonFileSystemITCase.java Checkmarx
529 530 MEDIUM Input_Path_Not_Canonicalized flink-runtime/src/test/java/org/apache/flink/runtime/rest/FileUploadHandlerITCase.java Checkmarx
1020 MEDIUM Input_Path_Not_Canonicalized flink-runtime/src/test/java/org/apache/flink/runtime/rest/RestServerEndpointITCase.java Checkmarx
84 168 MEDIUM Input_Path_Not_Canonicalized flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/debezium/DebeziumJsonFileSystemITCase.java Checkmarx
260 285 MEDIUM Input_Path_Not_Canonicalized flink-runtime/src/main/java/org/apache/flink/runtime/blob/BlobKey.java Checkmarx
266 MEDIUM Input_Path_Not_Canonicalized flink-streaming-java/src/test/java/org/apache/flink/streaming/api/functions/sink/filesystem/BucketStateSerializerTest.java Checkmarx
272 MEDIUM Input_Path_Not_Canonicalized flink-connectors/flink-connector-hive/src/test/java/org/apache/flink/connectors/hive/FlinkEmbeddedHiveRunner.java Checkmarx
66 MEDIUM Input_Path_Not_Canonicalized flink-scala/src/test/java/org/apache/flink/api/scala/operators/ScalaCsvOutputFormatTest.java Checkmarx
71 MEDIUM Input_Path_Not_Canonicalized flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/ogg/OggJsonSerDeSchemaTest.java Checkmarx
153 MEDIUM Input_Path_Not_Canonicalized flink-table/flink-sql-client/src/test/java/org/apache/flink/table/client/cli/CliClientTest.java Checkmarx
512 MEDIUM Input_Path_Not_Canonicalized flink-runtime/src/main/java/org/apache/flink/runtime/blob/BlobUtils.java Checkmarx
407 408 MEDIUM Input_Path_Not_Canonicalized flink-core/src/test/java/org/apache/flink/util/FileUtilsTest.java Checkmarx
105 259 MEDIUM Input_Path_Not_Canonicalized flink-runtime/src/test/java/org/apache/flink/runtime/blob/FileSystemBlobStoreTest.java Checkmarx
215 MEDIUM Input_Path_Not_Canonicalized flink-test-utils-parent/flink-migration-test-utils/src/main/java/org/apache/flink/test/migration/MigrationTestsSnapshotGenerator.java Checkmarx
61 68 77 MEDIUM Input_Path_Not_Canonicalized flink-end-to-end-tests/flink-end-to-end-tests-common/src/test/java/org/apache/flink/tests/util/util/FileUtilsTest.java Checkmarx
157 MEDIUM Input_Path_Not_Canonicalized flink-state-backends/flink-statebackend-rocksdb/src/test/java/org/apache/flink/contrib/streaming/state/RocksDBStateDownloaderTest.java Checkmarx
288 MEDIUM Input_Path_Not_Canonicalized flink-table/flink-sql-client/src/test/java/org/apache/flink/table/client/SqlClientTest.java Checkmarx
88 MEDIUM Input_Path_Not_Canonicalized flink-formats/flink-hadoop-bulk/src/test/java/org/apache/flink/formats/hadoop/bulk/HadoopPathBasedPendingFileRecoverableSerializerMigrationTest.java Checkmarx
73 MEDIUM Input_Path_Not_Canonicalized flink-runtime/src/test/java/org/apache/flink/runtime/io/network/partition/hybrid/tiered/file/ProducerMergedPartitionFileWriterTest.java Checkmarx
66 MEDIUM Input_Path_Not_Canonicalized flink-java/src/test/java/org/apache/flink/api/java/io/CsvOutputFormatTest.java Checkmarx
59 MEDIUM Input_Path_Not_Canonicalized flink-test-utils-parent/flink-test-utils/src/main/java/org/apache/flink/test/util/FileUtils.java Checkmarx
92 96 100 MEDIUM Input_Path_Not_Canonicalized flink-java/src/test/java/org/apache/flink/api/java/utils/ParameterToolTest.java Checkmarx
136 224 MEDIUM Input_Path_Not_Canonicalized flink-connectors/flink-connector-files/src/test/java/org/apache/flink/connector/file/src/FileSourceTextLinesITCase.java Checkmarx
167 MEDIUM Input_Path_Not_Canonicalized flink-end-to-end-tests/flink-end-to-end-tests-hive/src/test/java/org/apache/flink/tests/hive/HiveITCase.java Checkmarx
304 MEDIUM Input_Path_Not_Canonicalized flink-test-utils-parent/flink-connector-test-utils/src/main/java/org/apache/flink/connector/testframe/container/FlinkImageBuilder.java Checkmarx
57 79 MEDIUM Input_Path_Not_Canonicalized flink-docs/src/test/java/org/apache/flink/docs/rest/OpenApiSpecGeneratorTest.java Checkmarx
292 MEDIUM Input_Path_Not_Canonicalized flink-state-backends/flink-statebackend-rocksdb/src/test/java/org/apache/flink/contrib/streaming/state/RocksDBStateUploaderTest.java Checkmarx
50 107 MEDIUM Input_Path_Not_Canonicalized flink-core/src/test/java/org/apache/flink/core/fs/RefCountedFileWithStreamTest.java Checkmarx
316 MEDIUM Input_Path_Not_Canonicalized flink-core/src/test/java/org/apache/flink/testutils/ClassLoaderUtils.java Checkmarx
164 165 MEDIUM Input_Path_Not_Canonicalized flink-runtime/src/test/java/org/apache/flink/runtime/rest/MultipartUploadExtension.java Checkmarx
333 MEDIUM Input_Path_Not_Canonicalized flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/canal/CanalJsonSerDeSchemaTest.java Checkmarx
339 MEDIUM Input_Path_Not_Canonicalized tools/ci/flink-ci-tools/src/main/java/org/apache/flink/tools/ci/licensecheck/JarFileChecker.java Checkmarx
58 MEDIUM Input_Path_Not_Canonicalized tools/ci/flink-ci-tools/src/main/java/org/apache/flink/tools/ci/utils/notice/NoticeParser.java Checkmarx
266 291 MEDIUM Input_Path_Not_Canonicalized flink-tests/src/test/java/org/apache/flink/test/streaming/runtime/CacheITCase.java Checkmarx
284 MEDIUM Input_Path_Not_Canonicalized flink-connectors/flink-connector-files/src/test/java/org/apache/flink/connector/file/sink/writer/FileWriterBucketStateSerializerMigrationTest.java Checkmarx
355 MEDIUM Input_Path_Not_Canonicalized flink-formats/flink-json/src/test/java/org/apache/flink/formats/json/debezium/DebeziumJsonSerDeSchemaTest.java Checkmarx
132 MEDIUM Input_Path_Not_Canonicalized flink-end-to-end-tests/flink-distributed-cache-via-blob-test/src/main/java/org/apache/flink/streaming/tests/DistributedCacheViaBlobTestProgram.java Checkmarx
261 MEDIUM Improper_Restriction_of_Stored_XXE_Ref flink-table/flink-table-planner/src/test/java/org/apache/flink/table/planner/utils/DiffRepository.java Checkmarx
295 MEDIUM Improper_Locking flink-streaming-java/src/main/java/org/apache/flink/streaming/runtime/tasks/mailbox/TaskMailboxImpl.java Checkmarx
187 MEDIUM Improper_Locking flink-python/src/main/java/org/apache/beam/runners/fnexecution/control/DefaultJobBundleFactory.java Checkmarx
82 85 MEDIUM Client_Potential_XSS flink-python/docs/_static/pyflink.js Checkmarx
69 125 199 366 416 HIGH Unsafe_Reflection flink-scala/src/main/scala/org/apache/flink/api/scala/ClosureCleaner.scala Checkmarx
79 HIGH Unsafe_Reflection flink-table/flink-table-planner/src/main/scala/org/apache/flink/table/planner/typeutils/LegacyDataViewUtils.scala Checkmarx
83 HIGH Unsafe_Reflection flink-table/flink-table-planner/src/test/scala/org/apache/flink/table/planner/plan/metadata/MetadataHandlerConsistencyTest.scala Checkmarx
127 HIGH Unsafe_Reflection flink-table/flink-table-planner/src/test/scala/org/apache/flink/table/planner/codegen/agg/AggTestBase.scala Checkmarx
256 HIGH Stored_XSS flink-runtime/src/main/java/org/apache/flink/runtime/blob/BlobServerConnection.java Checkmarx
260 285 HIGH Stored_XSS flink-runtime/src/main/java/org/apache/flink/runtime/blob/BlobKey.java Checkmarx
64 HIGH Deserialization_of_Untrusted_Data flink-runtime/src/main/java/org/apache/flink/runtime/entrypoint/component/FileJobGraphRetriever.java Checkmarx
175 214 275 276 277 325 HIGH Deserialization_of_Untrusted_Data flink-runtime/src/test/java/org/apache/flink/runtime/rest/handler/job/JobSubmitHandlerTest.java Checkmarx
115 124 HIGH Deserialization_of_Untrusted_Data flink-core/src/test/java/org/apache/flink/util/AbstractIDTest.java Checkmarx

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ImagineBuildBot