Bump org.apache.hive:hive-jdbc from 3.1.3 to 4.0.0

Bumps org.apache.hive:hive-jdbc from 3.1.3 to 4.0.0. --- updated-dependencies: - dependency-name: org.apache.hive:hive-jdbc dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
google · Apr 1, 2024 · 6a31e8e · 6a31e8e
1 parent 049c465
commit 6a31e8e
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/pipelines/controller/pom.xml b/pipelines/controller/pom.xml
@@ -102,7 +102,7 @@
     <dependency>
       <groupId>org.apache.hive</groupId>
       <artifactId>hive-jdbc</artifactId>
-      <version>3.1.3</version>
+      <version>4.0.0</version>
       <!-- We cannot switch to newer versions yet as they are not stable, e.g.,
         the next one gives a NoClassDefFoundError on some Thrift classes.
         Because of this issue we exclude `log4j:log4j` and pin a newer version.
@@ -130,7 +130,7 @@
            which has the CVE-2020-24750 vulnerability. Simple exclusion of this
            is not the "right" approach but is working for our use-case. A new
            release of `hive-jdbc` (which depends on `hive-*` libraries) can
-           resolve many of these issues as 3.1.3 is too old. -->
+           resolve many of these issues as 4.0.0 is too old. -->
         <exclusion>
           <groupId>org.apache.htrace</groupId>
           <artifactId>htrace-core</artifactId>