[ZEPPELIN-5990] Disable sensitive configuration for JDBC url by jongyoul · Pull Request #4709 · apache/zeppelin · GitHub

jongyoul · 2024-02-08T01:29:44Z

What is this PR for?

Disabling some sensitive configuration for JDBC URL when running queries.

What type of PR is it?

Feature

Todos

- Task

What is the Jira issue?

https://issues.apache.org/jira/browse/ZEPPELIN-5990

How should this be tested?

Test should be passed
Sensitive configuration shouldn't be accepted

Screenshots (if appropriate)

Questions:

Does the license files need to update? No
Is there breaking changes for older versions? No
Does this needs documentation? No

jongyoul · 2024-02-19T08:49:19Z

ping @zjffdu @Reamer @huage1994

* [ZEPPELIN-5990] Disable sensitive configuration for JDBC url * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url (cherry picked from commit e65b543)

* [MINOR] Update jdbc.md Change postgres username (apache#4704) change postgres default username mysql_user/mysql_password to pg_user/pg_password. * Bump mathjax from 2.7.0 to 3.0.0 in /zeppelin-web (apache#4705) Bumps [mathjax](https://github.com/mathjax/MathJax) from 2.7.0 to 3.0.0. - [Release notes](https://github.com/mathjax/MathJax/releases) - [Commits](mathjax/MathJax@2.7.0...3.0.0) --- updated-dependencies: - dependency-name: mathjax dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump org.apache.shiro:shiro-core from 1.10.0 to 1.13.0 (apache#4703) Bumps [org.apache.shiro:shiro-core](https://github.com/apache/shiro) from 1.10.0 to 1.13.0. - [Release notes](https://github.com/apache/shiro/releases) - [Changelog](https://github.com/apache/shiro/blob/main/RELEASE-NOTES) - [Commits](apache/shiro@shiro-root-1.10.0...shiro-root-1.13.0) --- updated-dependencies: - dependency-name: org.apache.shiro:shiro-core dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump follow-redirects from 1.15.3 to 1.15.4 in /zeppelin-web (apache#4702) Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.3 to 1.15.4. - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.15.3...v1.15.4) --- updated-dependencies: - dependency-name: follow-redirects dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump follow-redirects from 1.15.3 to 1.15.4 in /zeppelin-web-angular (apache#4701) Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.3 to 1.15.4. - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.15.3...v1.15.4) --- updated-dependencies: - dependency-name: follow-redirects dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [MINOR] Upgrade jackson version in /zeppelin-server (apache#4635) * [HOTFIX] Disable shell interpreter (apache#4708) * Fix GCSNotebookRepoTests (apache#4711) * [HOTFIX] Check permission when updating cron information (apache#4631) * [HOTFIX] Check permission when updating cron information * [HOTFIX] Fix commented * [HOTFIX] Check permission when updating cron information * [HOTFIX] Check permission when updating cron information * [HOTFIX] Check permission when updating cron information * [MINOR] Change minimum java version to 11 in docs (apache#4710) * [MINOR] Change minimum java version to 11 in docs * [MINOR] Change minimum java version to 11 in docs * [HOTFIX] Change the link of `helium.json` from S3 to zeppelin.apache.org (apache#4713) * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url (apache#4709) * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url * [ZEPPELIN-5995] Update Kubernetes Library and hopefully fix flaky tests (apache#4712) * [MINOR] Set Snapshot version to 0.12.0-SNAPSHOT (apache#4720) * change version to 0.11.1-SNAPSHOT * change version * change to 0.12.0-SNAPSHOT * Bump org.postgresql:postgresql from 42.4.3 to 42.7.2 in /jdbc (apache#4723) Bumps [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) from 42.4.3 to 42.7.2. - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](https://github.com/pgjdbc/pgjdbc/commits) --- updated-dependencies: - dependency-name: org.postgresql:postgresql dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [HOTFIX] Escape Ldap search filters (apache#4714) * [HOTFIX] Escape envs when using `.conf` (apache#4715) * Fix the new zeppelin ui. The specific reason is that the use of excessively wide column widths resulted in the remaining fields being squeezed out of the screen, and nz table did not have a scroll bar set to display scrolling. (apache#4727) * Bump ip from 1.1.8 to 1.1.9 in /zeppelin-web (apache#4724) Bumps [ip](https://github.com/indutny/node-ip) from 1.1.8 to 1.1.9. - [Commits](indutny/node-ip@v1.1.8...v1.1.9) --- updated-dependencies: - dependency-name: ip dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump lodash from 4.17.15 to 4.17.21 in /zeppelin-web-angular (apache#4689) Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.15...4.17.21) --- updated-dependencies: - dependency-name: lodash dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [HOTFIX] Escape HeliumPackage information (apache#4728) * [NO-ISSUE] Use reload4j instead of log4j (apache#4719) * [NO-ISSUE] Upgrade org.json jar (apache#4722) * [ZEPPELIN-6001] k8s images fix (apache#4729) * Update zeppelin-interpreter Dockerfile fixed ARG version; Error "bzip2: Compressed file ends unexpectedly;" fixed by adding ---no-iri flag to wget * Update zeppelin-server Dockerfile fixed ARG version; fixed JAVA_HOME env. * Update scripts/docker/zeppelin-interpreter/Dockerfile Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [ZEPPELIN-6000] Polish some files mainly in zengine (apache#4731) * some misc polish * some misc polish * [ZEPPELIN-6003] Log source info of SQL in JDBCInterpreter (apache#4732) * [ZEPPELIN-6003] Log detail info of SQL in JDBCInterpreter * Update Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [ZEPPELIN-6002] Fix completer NPE (apache#4730) Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [ZEPPELIN-5986] Bump Maven surefire/failsafe plugins to recover JUnit5 tests (apache#4734) * [ZEPPELIN-5986] Re-enable Junit 5 integration tests by upgrading maven plugins * Fix SparkIntegrationTest * Disable the LivyInterpreterIT * Selenium * NPE * Disable testEditOnDoubleClick * [ZEPPELIN-6005] Update Kyuubi JDBC docs (apache#4738) * Bump org.apache.commons:commons-configuration2 from 2.8.0 to 2.10.1 (apache#4740) Bumps org.apache.commons:commons-configuration2 from 2.8.0 to 2.10.1. --- updated-dependencies: - dependency-name: org.apache.commons:commons-configuration2 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [MINOR] Fix missing changed versions (apache#4737) * [MINOR] Fix missing changed versions * nit * Bump com.nimbusds:nimbus-jose-jwt in /zeppelin-server (apache#4733) Bumps [com.nimbusds:nimbus-jose-jwt](https://bitbucket.org/connect2id/nimbus-jose-jwt) from 9.13 to 9.37.2. - [Changelog](https://bitbucket.org/connect2id/nimbus-jose-jwt/src/master/CHANGELOG.txt) - [Commits](https://bitbucket.org/connect2id/nimbus-jose-jwt/branches/compare/9.37.2..9.13) --- updated-dependencies: - dependency-name: com.nimbusds:nimbus-jose-jwt dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-6007] Enhance release scripts for tar shasum commands detection (apache#4747) * [ZEPPELIN-6007] Enhance release scripts for tar shasum commands detection * fix * nit * indent * [ZEPPELIN-6008] Fix parameter usage of bokeh in test case (apache#4748) * [ZEPPELIN-6008] Pin plotly 5.19.0 * Revert "[ZEPPELIN-6008] Pin plotly 5.19.0" This reverts commit 60d9ce9. * Pin bokeh=3.3.4 * Revert "Pin bokeh=3.3.4" This reverts commit 44ccc98. * Remove usage of deprecated paramater legend * [ZEPPELIN-5969] Remove Hadoop2 and move to Hadoop3 shaded client (apache#4691) * Drop hadoop2 in github actions * Update docs * Drop hadoop2 support * Remove hadoop2 integration tests * findbugs use the same version in all modules * Use hadoop3.3 for tests * Move to scala 2.12 * Try to fix flink * Usage of metals * Remove duplicate version and groupid * Fix Flink with Hadoop3 * fix log * R * fix * fix * fix * fix * hadoop-3.3 * fix * fix * Address comments * address comments --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [HOTFIX] Remove rendering helium description as HTML in Frontend (apache#4755) * Bump express from 4.18.2 to 4.19.2 in /zeppelin-web-angular (apache#4744) Bumps [express](https://github.com/expressjs/express) from 4.18.2 to 4.19.2. - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.18.2...4.19.2) --- updated-dependencies: - dependency-name: express dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * update scripts/docker/zeppelin/bin/Dockerfile to JDK11 (apache#4753) * update scripts/docker/zeppelin/bin/Dockerfile to JDK11 * update miniconda to py3.9 * Update Dockerfile to remove extra line * Bump some apache common libs (apache#4757) * [ZEPPELIN-6006] Remove command line applications when downloading applications (apache#4746) * Move Files with java * Use java to download external dependecies * Improve code after review * Correct Mirror-URL and compilation * [ZEPPELIN-6016] Rewrite and enable Livy integration tests (apache#4743) * wip * nit * nit * wip * wip * fix * [ZEPPELIN-5973] Bump Livy 0.8.0-incubating * nit * Spark 3.5.1 * test * fix * comment * nit * nit * nit * [ZEPPELIN-6017] Revert changes about ZEPPELIN_IDENT_STRING in ZEPPELIN-5421 * [ZEPPELIN-6015] Update ci-action plugins (apache#4759) * [ZEPPELIN-5999] Reduce instance objects from Zeppelin (apache#4726) * Remove ZeppelinConfiguration Singelton and add MiniZeppelinServer * Add ZeppelinConfiguration to Interpreter * Remove static pluginmanager and configstorage * Inject servicelocator into SessionConfiguratior * use custom serviceLocator in integration tests * Reorder code * code cleanup * Add ZeppelinConfiguration as class variable to InterpreterOption * Avoid leaking third-party libs * [ZEPPELIN-6019] Remove Submarine support (apache#4763) * [ZEPPELIN-6022] Skip decryption of credentials.json when file is empty (apache#4765) * Skip decryption when empty * Use more elegant empty json string check * [ZEPPELIN-6018] Update gRPC version from 1.51.0 to 1.55.1 for successful Apache Zeppelin build on s390x architecture (apache#4758) * Update grpc version in pom.xml for successful Apache Zeppelin build on s390x architecture In the s390x architecture, the Apache Zeppelin package builds successfully when the grpc dependency version in the pom.xml file is changed from version 1.51.0 to version 1.62.2. Therefore, I have updated the grpc version in the pom.xml file. * Update LICENSE Updated the grpc version in LICENSE from 1.51.0 to 1.62.2 * grpc-version-change-to 1.55.1 * [ZEPPELIN-6027] Enhanced Integration with Apache Kyuubi (apache#4770) * [ZEPPELIN-6027] Enhanced Integration with Apache Kyuubi * fix style * [ZEPPELIN-6028] Enhance default value assignment for ZEPPELIN_IDENT_STRING (apache#4772) * [ZEPPELIN-6029] Set COPYFILE_DISABLE=1 for macOS tar (apache#4774) * [ZEPPELIN-6029] Add --disable-copyfile for macOS tar * COPYFILE_DISABLE=1 * ODP-1644: Removed unsupported interpreter * ODP-1315: Bumpup loadash to 4.x * ODP: fix odp version * ODP-303 New UI build fix for missing projects * [ODP-1315] ODP-1644: CVE fixes * ODP-1644: Update to Spark Version * ODP-1644: Added libthrift, updated hadoop and phoenix versions * ODP-1644: Hive 4.0.0 support for JDBC * ODP-1644: Added two variables that were previously missed * ODP-1644: Fixed node/npm version issue when testing with arm64 MacOS * ODP-1644: Increased timeouts/sleeps to pass tests * ODP-1644: Increased ms in Thread.sleep * ODP-1829: Updated pom.xml files * ODP-1829: Removed uneeded tests * ODP-1829: Fixed tests failures * ODP-1829: Disabled Finicky Helium Test * ODP-1829: Increased wait time so that tests would not fail * ODP-1829: Thread.Sleep -> Thread.sleep * Zeppelin Build fixes * ODP-1644: Updated version number to 11.2.3.3.6.0-1 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: bigpear0201 <bigpear0201@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Shefali Singh <31477542+shefali163@users.noreply.github.com> Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> Co-authored-by: PJ Fanning <pjfanning@users.noreply.github.com> Co-authored-by: myongyun <984093369@qq.com> Co-authored-by: th1nksnow <114925852+th1nksnow@users.noreply.github.com> Co-authored-by: Manhua <kevinjmh@qq.com> Co-authored-by: Manhua <manhua@apache.org> Co-authored-by: Cheng Pan <chengpan@apache.org> Co-authored-by: Cheng Pan <pan3793@gmail.com> Co-authored-by: Gayle <9532712+flowy0@users.noreply.github.com> Co-authored-by: zeotuan <48720253+zeotuan@users.noreply.github.com> Co-authored-by: Aditi Sharma <167422409+aditi-sharma-1@users.noreply.github.com> Co-authored-by: Prabhjyot Singh <prabhjyot@acceldata.io> Co-authored-by: shubhamsharma <shubham@acceldata.io>

pjfanning · 2025-07-02T13:23:38Z

This is a fix for CVE-2024-31864
I don't believe a CVE should have been issued for this and it has opened up a long list of requests for similar CVEs.
I see no problem with hardening the Zeppelin code, I just disagree with assigning CVEs for things like this.
If you read https://zeppelin.apache.org/security.html

Zeppelin is all about letting you run code
You are expected to run Zeppelin on a secure network or to enable Shiro auth if you need to open up access
In short, Zeppelin is not expected to be run in an adversarial environment
MySQL jars are not shipped with Zeppelin - we should just say that users who add JDBC driver jars to Zeppelin are doing so at their own risk

fyi @jongyoul @zjffdu @Reamer @raboof

* [ZEPPELIN-5768] Remove scio interpreter (apache#4408) * [ZEPPELIN-5767] Update rimraf and scrollmonitor to the latest version (apache#4414) * [ZEPPELIN-3945] Create .gitattributes (apache#4409) * [ZEPPELIN-5761] Support flink 1.15.1 (apache#4404) * Bump aws-java-sdk-s3 in /zeppelin-plugins/notebookrepo/s3 (apache#4413) Bumps [aws-java-sdk-s3](https://github.com/aws/aws-sdk-java) from 1.11.736 to 1.12.261. - [Release notes](https://github.com/aws/aws-sdk-java/releases) - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.11.736...1.12.261) --- updated-dependencies: - dependency-name: com.amazonaws:aws-java-sdk-s3 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump kubernetes-client in /zeppelin-plugins/launcher/k8s-standard (apache#4411) Bumps [kubernetes-client](https://github.com/fabric8io/kubernetes-client) from 5.3.1 to 5.3.2. - [Release notes](https://github.com/fabric8io/kubernetes-client/releases) - [Changelog](https://github.com/fabric8io/kubernetes-client/blob/master/CHANGELOG.md) - [Commits](fabric8io/kubernetes-client@v5.3.1...v5.3.2) --- updated-dependencies: - dependency-name: io.fabric8:kubernetes-client dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump kotlin-stdlib from 1.3.50 to 1.6.0 in /kotlin (apache#4387) Bumps [kotlin-stdlib](https://github.com/JetBrains/kotlin) from 1.3.50 to 1.6.0. - [Release notes](https://github.com/JetBrains/kotlin/releases) - [Changelog](https://github.com/JetBrains/kotlin/blob/v1.6.0/ChangeLog.md) - [Commits](JetBrains/kotlin@v1.3.50...v1.6.0) --- updated-dependencies: - dependency-name: org.jetbrains.kotlin:kotlin-stdlib dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Revert "Bump kotlin-stdlib from 1.3.50 to 1.6.0 in /kotlin (apache#4387)" This reverts commit 5ba5300. * [ZEPPELIN-5777] Fix dead links in docs (apache#4418) * [ZEPPELIN-5770] Remove hazelcast jet interpreter (apache#4412) * [ZEPPELIN-5769] Roles in API-Request (apache#4407) * Add user roles to API Requests * Polish RestAPI * Use Boolean instead of boolean * Rename paragraphJobStatusList to paragraphs * Remove blank in .gitattributes (apache#4420) * [HOTFIX] - fix s3 enforcer (apache#4421) * Bump shiro-core from 1.8.0 to 1.9.1 (apache#4397) Bumps [shiro-core](https://github.com/apache/shiro) from 1.8.0 to 1.9.1. - [Release notes](https://github.com/apache/shiro/releases) - [Changelog](https://github.com/apache/shiro/blob/main/RELEASE-NOTES) - [Commits](apache/shiro@shiro-root-1.8.0...shiro-root-1.9.1) --- updated-dependencies: - dependency-name: org.apache.shiro:shiro-core dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5780] Unify paragraph errors (apache#4422) * [ZEPPELIN-5779] Remove pig interpreter (apache#4424) * [ZEPPELIN-5779] Remove pig interpreter * Automatically updated after build * [ZEPPELIN-5771]Zeppelin Interpreter Support Alluxio From 1.0.0 To 2.5.0 (apache#4410) * [ZEPPELIN-5771]Zeppelin Interpreter Support Alluxio From 1.0.0 To 2.5.0 * [ZEPPELIN-5771]Fix CheckStyle * Adjust CI test case to pass alluxio 2.x * Fix check style * adapt zeppelin ci * remove unnecessary test cases Co-authored-by: glennlgan <glennlgan@tencent.com> * [ZEPPELIN-5766] Window compilation (.appveyor.yml) (apache#4426) * add build script to appveyor.yml * add -DskipTest option to build sciprt on appveyor.yml * add fork count configuration of maven-surefire-plugin to pom.xml * add new line to appveyor.yml for EOF Warning * remove forkcount configuration of surefire plugin in pom.xml and add mode-javascript.js to karma.conf.js * remove karma.conf.js file auto-generated by building * Bump protobuf-java from 3.12.4 to 3.16.1 in /alluxio (apache#4429) Bumps [protobuf-java](https://github.com/protocolbuffers/protobuf) from 3.12.4 to 3.16.1. - [Release notes](https://github.com/protocolbuffers/protobuf/releases) - [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/generate_changelog.py) - [Commits](protocolbuffers/protobuf@v3.12.4...v3.16.1) --- updated-dependencies: - dependency-name: com.google.protobuf:protobuf-java dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Remove geode interpreter (apache#4430) * [ZEPPELIN-4794] Add comment about changing localhost when running Zeppelin on WSL or Windows (apache#4431) * [ZEPPELIN-4871] Update Livy interpreter to 0.7.1 (apache#4433) * Upgrade livy interpreter version from 0.5.0 to 0.7.1 * fix livy version to 0.7.1-incubating * fix livy-0-5 version title to livy-0-7 Co-authored-by: dwayne.knq <dwayne.knq@kakaocorp.com> * Refactor: remove ignite interpreter and related things form the repository (apache#4428) * [ZEPPELIN-5788] Remove beam interpreter (apache#4435) * [ZEPPELIN-5788] Remove beam interpreter * [ZEPPELIN-5788] remove beam profile when publish to maven * [ZEPPELIN-5789] Update Dockerfile to use JDK instead of JRE (apache#4436) * Update Dockerfile to use JDK instead of JRE Fixes issues such as trying to add a new interpreter belonging to "jdbc" group having hive-jdbc conf results in missing dependencies (tools.jar) and such. * Add comment based on review. * Remove sap interpreter (apache#4437) * [ZEPPELIN-5791] Update hbase interpreter version from 1.0.0 to 2.4.12 (apache#4438) * update hbase interpreter version from 1.0.0 to 2.4.12 * exclude glassfish in hbase-server * Remove hbase-server in hbase interpreter Co-authored-by: gbnam <gbnam@diquest.com> * [ZEPPELIN-5638] Add flink job interval check (apache#4427) * [ZEPPELIN-5785] Remove ksql interpreter (apache#4434) Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * Bump gson from 2.2 to 2.8.9 in /shell (apache#4381) Bumps [gson](https://github.com/google/gson) from 2.2 to 2.8.9. - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/master/CHANGELOG.md) - [Commits](google/gson@gson-2.2...gson-parent-2.8.9) --- updated-dependencies: - dependency-name: com.google.code.gson:gson dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5799] Enriched LdapRealm configuration in Shiro Authentication and fixed some wrong config items. (apache#4444) * [ZEPPELIN-5801] add configuration_storage.md and rename storage.md to notebook_storage.md (apache#4446) Co-authored-by: zhangkunyuan <zhangkunyuan@cmhi.chinamobile.com> * [Hotfix] Typo in shiro_authentication.md (apache#4447) Remove one `ldapRealm.contextFactory.authenticationMechanism` * Bump hadoop-common from 3.2.3 to 3.2.4 in /alluxio (apache#4442) Bumps hadoop-common from 3.2.3 to 3.2.4. --- updated-dependencies: - dependency-name: org.apache.hadoop:hadoop-common dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [MINOR] Add some GitHub features for PR (apache#4452) * [ZEPPELIN-5802][MINOR] fix rimraf version (apache#4448) * [MINOR] fix rimraf version * fix rimraf version in zeppelin-web/package-lock.json * Bump gson from 2.8.2 to 2.8.9 in /zeppelin-integration (apache#4370) Bumps [gson](https://github.com/google/gson) from 2.8.2 to 2.8.9. - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/master/CHANGELOG.md) - [Commits](google/gson@gson-parent-2.8.2...gson-parent-2.8.9) --- updated-dependencies: - dependency-name: com.google.code.gson:gson dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump gson from 2.8.5 to 2.8.9 in /influxdb (apache#4380) Bumps [gson](https://github.com/google/gson) from 2.8.5 to 2.8.9. - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/master/CHANGELOG.md) - [Commits](google/gson@gson-parent-2.8.5...gson-parent-2.8.9) --- updated-dependencies: - dependency-name: com.google.code.gson:gson dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump gson from 2.8.6 to 2.8.9 in /bigquery (apache#4372) Bumps [gson](https://github.com/google/gson) from 2.8.6 to 2.8.9. - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/master/CHANGELOG.md) - [Commits](google/gson@gson-parent-2.8.6...gson-parent-2.8.9) --- updated-dependencies: - dependency-name: com.google.code.gson:gson dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump xercesImpl from 2.11.0.SP5 to 2.12.2 in /jdbc (apache#4384) Bumps xercesImpl from 2.11.0.SP5 to 2.12.2. --- updated-dependencies: - dependency-name: xerces:xercesImpl dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump postgresql from 42.3.3 to 42.4.1 in /jdbc (apache#4440) Bumps [postgresql](https://github.com/pgjdbc/pgjdbc) from 42.3.3 to 42.4.1. - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](pgjdbc/pgjdbc@REL42.3.3...REL42.4.1) --- updated-dependencies: - dependency-name: org.postgresql:postgresql dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Remove useless pom file `pom-groovy-only.xml` in `zeppelin-groovy` module (apache#4454) * [ZEPPELIN-5804] support python 3.10 (apache#4453) * [ZEPPELIN-5810] Allow both package names jupyter_client and jupyter-client (apache#4455) * [MINOR] [JDBC] JDBCInterpreterTest.testMultiTenant_* improvement (apache#4462) * [ZEPPELIN-5819] Update to newer geoip jar (apache#4464) * [ZEPPELIN-5800] upgrade version of apache commons configuration2 to 2.8 (apache#4445) * GitHub Workflows security hardening (apache#4467) * build: harden frontend.yml permissions Signed-off-by: Alex <aleksandrosansan@gmail.com> * build: harden core.yml permissions Signed-off-by: Alex <aleksandrosansan@gmail.com> * [ZEPPELIN-5694] Support apache kyuubi (apache#4392) * [ZEPPELIN-5694] Support apache kyuubi * SUPPORT KERBEROS MODE * [ZEPPELIN-5760] fix passing configs to spark in k8s (apache#4398) * passing static arguments to spark-submit command so driver can pick them up * fixed static names * removed duplicate driver memory setting * fixed driver extra java opts * extend test * use ZEPPELIN_SPARK_CONF env var to pass spark configurations * fix import wildmark * fix separator * remove redundant concatenation * - remove redundant concatenation - fix tests * [ZEPPELIN-5826] Activate credentialReplacement test (apache#4468) * Update protobuf-maven-plugin from 0.5.0 to 0.6.1 (apache#4469) Notably, this version no longer overwrites the protoc compiler executable each time the project is built, which is convenient on systems where it needs some post-processing (current NixOS). * [ZEPPELIN-5824] Checkstyle (apache#4466) * update livy archive name (apache#4470) From 0.6.0 onwards the archive name is prefixed with 'apache-'. As far as I can see there are no scripts that still want to support older versions of livy, so it is probably safe to update the script like this. I did not test beyond invoking the script. * [ZEPPELIN-5829] upgrade gson to 2.8.9 due to CVE-2022-25647 (apache#4476) * [ZEPPELIN-5833] Enable Cassandra for JDK11 ### What is this PR for? This PR updates scala for the cassandra interpreter to 2.12 ### What type of PR is it? - Improvement ### Todos * [ ] - Verify with real Cassandra Backend ### What is the Jira issue? * https://issues.apache.org/jira/browse/ZEPPELIN-5833 ### How should this be tested? * CI ### Questions: * Does the licenses files need to update? Yes * Is there breaking changes for older versions? Yes * Does this needs documentation? No Author: Philipp Dallig <philipp.dallig@gmail.com> Closes apache#4479 from Reamer/cassandra_jdk11 and squashes the following commits: 4ba0dbc [Philipp Dallig] Enable Cassandra for JDK11 * [ZEPPELIN-5834] Remove last references to Hadoop 2.6 as JDK11 is not supported. ### What is this PR for? This PR updates Hadoop 2.6 dependencies to 2.7. ### What type of PR is it? Improvement ### What is the Jira issue? * https://issues.apache.org/jira/browse/ZEPPELIN-5834 ### How should this be tested? * CI ### Questions: * Does the licenses files need to update? No * Is there breaking changes for older versions? No * Does this needs documentation? No Author: Philipp Dallig <philipp.dallig@gmail.com> Closes apache#4484 from Reamer/hadoop_jdk11 and squashes the following commits: 88d3d47 [Philipp Dallig] Remove last references to Hadoop 2.6 as JDK11 is not supported. * [ZEPPELIN-5819] Configures ivy to download jar libraries only from remote ### What is this PR for? Configures ivy to download jar libraries only from remote and ignore local jars ### What type of PR is it? * Hot Fix ### What is the Jira issue? * https://issues.apache.org/jira/browse/ZEPPELIN-5819 ### How should this be tested? * CI ### Questions: * Does the licenses files need to update? No * Is there breaking changes for older versions? No * Does this needs documentation? No Author: Philipp Dallig <philipp.dallig@gmail.com> Closes apache#4495 from Reamer/ivy_download and squashes the following commits: b74631a [Philipp Dallig] Configures ivy to download jar libraries only from remote * [ZEPPELIN-5191] Fix the wrong Docker image name in zeppelin-server.yaml (apache#4439) * Fix the wrong Docker image name - There has never been any Docker image named `zeppelin-interpreter` or `zeppelin-server`. - The latest version also should be 0.10.1 * Add more instructions for running Zeppelin on K8s - How to build zeppelin-distribution - How to build zeppelin-server - How to build zeppelin-interpreter - How to use ./k8s/zeppelin-server.yaml script to correctly launch Zeppelin on Kubernetes cluster * Adding a reminder to adjust images' names This commit will remove the step-by-step editing of zeppelin-server.yaml and replacing it with a simple reminder to adjust the names in this file * [ZEPPELIN-5836] Remove scala-2.10 because it has no JDK 11 Support (apache#4494) * Scala adjustments with jdk11 * Update some interpreter to support jdk11 * Bump commons-text from 1.8 to 1.10.0 (apache#4493) Bumps commons-text from 1.8 to 1.10.0. --- updated-dependencies: - dependency-name: org.apache.commons:commons-text dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5839] Update mockito and powermock (apache#4499) * [ZEPPELIN-5493] Remove prefix in jdbc interpreter (apache#4463) * Remove prefix in jdbc interpreter * update docs * [ZEPPELIN-5123] Add an example grafana dashboard (apache#4295) * Add an example grafana dashboard * Add dashboard mention to doc * Add operation/monitoring link to setup dropdown Co-authored-by: Johann Behr <j.behr@avm.de> * [ZEPPELIN-5832] Use protoc-jar-maven-plugin, which has a good IDE support (apache#4480) * [ZEPPELIN-5815] Frontend CI jobs improvement (apache#4498) * disable enforcer plugin * not verify all * VERIFY TWO JOB * Add test dependencies for `zeppelin-web` . Change the scope of dependencies in `zeppelin-web` and `zeppelin-integration` to test. * adjustment * use scala profile * Add web-dist profile * Use scala profile in zeppelin-integration * Enable using-source-tree Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [ZEPPELIN-5843] Miscellaneous polishing (apache#4504) * Remove maven-dependency-plugin out of poms where it has no effect * Use the same frontend-maven-plugin version in zeppelin-zengine as defined in parent pom.xml * [HOTFIX] Correct Docker build * [ZEPPELIN-5763] NoClassDefFoundError in spark interpreter: org/apache/commons/lang/StringUtils (apache#4501) * [ZEPPELIN-5763] java.lang.NoClassDefFoundError: org/apache/commons/lang/StringUtils * Remove commons-lang * [ZEPPELIN-5845] Cluster polish (apache#4505) * [ZEPPELIN-5842] Maven-Plugin management (apache#4503) * Plugin versions are managed in parent zeppelin pom * Overwrite plugin version in pluginManagement section * Add project.build.sourceEncoding UTF-8 into root pom.xml * [ZEPPELIN-5612] Upgrade junit 4 to 5 (apache#4321) * [ZEPPELIN-5612] Upgrade junit 4 to 5 * Refactor `UtilTest.java` with jUnit 5 as an example. * update for review * [ZEPPELIN-5849] MIGRATE JDBC MODULE TO JUNIT 5 (apache#4511) * [MINOR] Remove warnning (apache#4513) * [MINOR] Remove lifecycle-mapping for elicpse m2e * Fix checkstyle * [ZEPPELIN-5847] Polish Maven tasks (apache#4509) * maven-remote-resources-plugin is managed by apache parent pom * Maven version check is configured in apache parent * Rename enforcer rule * [MINOR] Polish maven plugins for root pom (apache#4512) * Bump postgresql from 42.4.1 to 42.4.3 in /jdbc (apache#4517) Bumps [postgresql](https://github.com/pgjdbc/pgjdbc) from 42.4.1 to 42.4.3. - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](pgjdbc/pgjdbc@REL42.4.1...REL42.4.3) --- updated-dependencies: - dependency-name: org.postgresql:postgresql dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [MINOR] Remove `maven-eclipse-plugin` (apache#4518) * [MINOR] Use Maven CLI option instead of a logger adjustment. (apache#4521) * [ZEPPELIN-5859] Upgrading alluxio client library to latest stable release 2.9.0 (apache#4524) * [ZEPPELIN-5859] Upgrading alluxio client library to latest stable release 2.9.0 Upgrading alluxio client library to latest stable release * [ZEPPELIN-5859] Importing only the essential classes in AlluxioInterpreter.java * [ZEPPELIN-5859] Fixing the checkstyle Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * Update alluxio/src/main/java/org/apache/zeppelin/alluxio/AlluxioInterpreter.java Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * [MINOR] Add github autolink to ZEPPELIN (apache#4528) * [MINOR] Fix tiny typo (apache#4530) * [ZEPPELIN-5856] Bump bouncycastle 1.70 (apache#4522) * [ZEPPELIN-5856] Bump bouncycastle 1.70 * nit * nit * nit * [Minor][ZEPPELIN-5859] Fixing the styling issue (apache#4534) * [ZEPPELIN-5859] Fixing the styling issue * [ZEPPELIN-5859] Fixing indentation * [ZEPPELIN-5863] Warn not to expose the docker daemon to untrusted users (apache#4526) * [MINOR] Fix Appveyor error (apache#4520) * [ZEPPELIN-5867][JDBC] Exclude hbase-server from hive-jdbc (apache#4536) * [ZEPPELIN-5857] Bump gRPC and protobuf to support build on macOS M1 chips (apache#4523) * [ZEPPELIN-5857] Bump gRPC and protobuf to support build on macOS M1 chips * fix * nit * [ZEPPELIN-5869] Remove Incubating from Kyuubi reference (apache#4540) * [ZEPPELIN-5873] Update github actions (apache#4542) * [MINOR] Specify branch names for Github action (apache#4529) * [MINOR] Specify branch names for Github action * [MINOR] Specify branch names for Github action * [MINOR] Ignore depdendabot's push triggering Github Actions * [MINOR] Support aarch for frontend plugin (apache#4541) * [MINOR] Support aarch for frontend plugin * [MINOR] Support aarch for frontend plugin * [MINOR] Support aarch for frontend plugin * Divide plugin version and dependency version * [HOTFIX] Github Actions workaround (apache#4550) * Correct small typo (apache#4551) * Bump json5 from 1.0.1 to 1.0.2 in /zeppelin-web-angular (apache#4544) Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2. - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) --- updated-dependencies: - dependency-name: json5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump eventsource from 1.0.7 to 1.1.1 in /zeppelin-web-angular (apache#4376) Bumps [eventsource](https://github.com/EventSource/eventsource) from 1.0.7 to 1.1.1. - [Release notes](https://github.com/EventSource/eventsource/releases) - [Changelog](https://github.com/EventSource/eventsource/blob/master/HISTORY.md) - [Commits](EventSource/eventsource@v1.0.7...v1.1.1) --- updated-dependencies: - dependency-name: eventsource dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [MINOR] Fix wrong format for github actions of 'branches-ignore' (apache#4552) * [MINOR] document 'markdown' display system (apache#4549) * [MINOR] document 'markdown' display system * Update docs/usage/display_system/basic.md Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * [MINOR] Disable depeanabot branches for AppVeyor (apache#4555) * [ZEPPELIN-5875] Fix flaky tests in `core-modules` (apache#4556) * Bump global-modules-path and webpack-cli in /zeppelin-web (apache#4554) Removes [global-modules-path](https://github.com/rosen-vladimirov/global-modules-path). It's no longer used after updating ancestor dependency [webpack-cli](https://github.com/webpack/webpack-cli). These dependencies need to be updated together. Removes `global-modules-path` Updates `webpack-cli` from 3.1.2 to 3.3.12 - [Release notes](https://github.com/webpack/webpack-cli/releases) - [Changelog](https://github.com/webpack/webpack-cli/blob/master/CHANGELOG.md) - [Commits](webpack/webpack-cli@v3.1.2...v3.3.12) --- updated-dependencies: - dependency-name: global-modules-path dependency-type: indirect - dependency-name: webpack-cli dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5874] polish flink code base (apache#4553) * Remove conda cache suffix (apache#4557) * [ZEPPELIN-5861] Correct shading Prefix (apache#4545) * Add Process ErrorMessage * change shade prefix * Run with pre modules to fill the maven reactor * spark-interpreter has no scala test so we can remove the maven plugin * Fix flaky python test * Use shaded version of io.grpc:grpc-netty (io.grrpc:grpc-netty-shaded) * Adjust interpreter tests * Remove maven-dependency-plugin, because downloaded artefacts are attached to classpath * [ZEPPELIN-5844] Support flink 1.16 (apache#4506) * [ZEPPELIN-5844] Support flink 1.16 * Update github action * Fix CI * save * Fix flink test * Remove -B in core.yaml * [ZEPPELIN-5855] Refactor docker plugin and remove powermock (apache#4519) * Refactor docker plugin * prevent infinite loop * [HOTFIX] Fix CI failure due to sqlalchemy api change (apache#4561) * Bump jettison from 1.4.0 to 1.5.2 (apache#4543) Bumps [jettison](https://github.com/jettison-json/jettison) from 1.4.0 to 1.5.2. - [Release notes](https://github.com/jettison-json/jettison/releases) - [Commits](jettison-json/jettison@jettison-1.4.0...jettison-1.5.2) --- updated-dependencies: - dependency-name: org.codehaus.jettison:jettison dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5846] Remove support flink 1.12 (apache#4558) * save * Fix flink test * [ZEPPELIN-5846] Remove support of flink 1.12 * [MINOR] Use flink-113 as default profile (apache#4566) * [ZEPPELIN-5884] fix: wrong path of test folder in Java Interpreter (apache#4569) * [ZEPPELIN-5881] Missing dependency when package zeppelin-server module (apache#4570) * [ZEPPELIN-5879] Migrate Zeppelin Plugins to JUnit5 (apache#4559) * use junit5 in k8s plugin * junit for other plugins * Remove juint4 in zeppelin plugins * Remove visibility modifier in test classes * Apply suggestions from code review Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> --------- Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> * [ZEPPELIN-5885] Solve the concurrency problem caused by multiple concurrent calls to note clone (apache#4563) * Bump jettison from 1.5.2 to 1.5.4 (apache#4575) Bumps [jettison](https://github.com/jettison-json/jettison) from 1.5.2 to 1.5.4. - [Release notes](https://github.com/jettison-json/jettison/releases) - [Commits](jettison-json/jettison@jettison-1.5.2...jettison-1.5.4) --- updated-dependencies: - dependency-name: org.codehaus.jettison:jettison dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump jackson-databind from 2.12.6.1 to 2.12.7.1 in /neo4j (apache#4576) Bumps [jackson-databind](https://github.com/FasterXML/jackson) from 2.12.6.1 to 2.12.7.1. - [Release notes](https://github.com/FasterXML/jackson/releases) - [Commits](https://github.com/FasterXML/jackson/commits) --- updated-dependencies: - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5891]Delete cloneNoteMeta method and replace it with createNoteAuth. (apache#4578) Co-authored-by: gyn <gyn> * [ZEPPELIN-5855] remove more powermock usages to support junit5 (apache#4580) * remove more powermock usages to support junit5 * Migrate alluxio tests to junit5 * Remove powermock also from spark tests * Update zeppelin-server/src/test/java/org/apache/zeppelin/service/shiro/AbstractShiroTest.java Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> --------- Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * [MINOR] Update doc for flink 1.16 (apache#4572) Co-authored-by: calvin.tran <calvin.tran@grabtaxi.com> * [ZEPPELIN-5900] Fix RemoteSchedulerTest (apache#4582) * [ZEPPELIN-5903] Improve LRU NoteCache - Add a cleanup (apache#4590) * Improve LRU NoteCache - Add a cleanup * Remove debug code Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> --------- Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> * [ZEPPELIN-5898] fix:download csv data error (apache#4593) Co-authored-by: duanxiaoqiu <duanxiaoqiu@qiyi.com> * [ZEPPELIN-5893] NPE in ParagraphResult when getting progress from paragraphJson (apache#4579) * Update ParagraphResult.java paragraphJson.getInt("progress") Add Judgment * Update ParagraphResult.java format * Update ParagraphResult.java Optimize code indentation * Use wildcard generic for job and remove generic for JobListener (apache#4592) * [ZEPPELIN-5851][JUnit 5 Migration] Module: zeppelin-zengine (apache#4532) * [JUnit 5 Migration] Module: zeppelin-zengine * update for review * Fix TimeoutLifecycleManagerTest * Remove mockito-junit-jupiter --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [ZEPPELIN-5907][JUnit 5 Migration] Module zeppelin-interpreter (apache#4595) * Migrate zeppelin-interpreter to JUnit5 * Stabilize the tests * [ZEPPELIN-5908] JDBCSecurityImpl should relogin when authType='kerberos' to void kerberos ticket expired (apache#4597) Co-authored-by: Yi Xie <xieyi01@rd.netease.com> * Update atomix to 3.0.0-rc5, which removes hamcrest as a compilation dependency of zeppelin-interpreter (apache#4601) * [ZEPPELIN-5850] Migrate zeppelin-server to Junit5 (apache#4600) * [ZEPPELIN-5897] Remove launcher properties and only use the current context properties (apache#4602) * Use Classloader class for flink creation (apache#4605) * Integration tests with newer spark version (apache#4604) * [ZEPPELIN-5919] Compile scala only where scala code is present (apache#4607) * [ZEPPELIN-5920] Fix deprecation warnings (apache#4609) * [ZEPPELIN-5920] Fix deprecation warnings * [ZEPPELIN-5920] Filter deprecationWarnings only * [ZEPPELIN-5920] Replace warning supression with a counter --------- Co-authored-by: Matthias Koch <matthias-a.koch@rohde-schwarz.com> * [ZEPPELIN-5921] Fix sync with remote repository (apache#4610) * [ZEPPELIN-5921] Fix sync with remote repository * [ZEPPELIN-5921] Add missing imports * [ZEPPELIN-5921] Add missing import --------- Co-authored-by: Matthias Koch <matthias-a.koch@rohde-schwarz.com> * [ZEPPELIN-5927]Solve the concurrency calls to `saveNoteAuth`. (apache#4613) * [ZEPPELIN-5926] Remove map entries if Collection is empty (apache#4612) * Remove map entries if Collection is empty * Add license header to new class * Update kubernetes client to 5.4.1 and fix unit tests (apache#4133) * Upgraded h2 version in jdbc (apache#4618) * [HOTFIX] Add bank.csv for integration test (apache#4617) * Remove ivy and oro (apache#4622) * [ZEPPELIN-5933] Polish jetty (apache#4621) * Rewrite index.html handling * Polish initialize of the Rest API * Don't break the WebApp Classloader Isolation * Use default SessionHandler * Add simple session tests * [HOTFIX] Change the location of bank.csv to fix the integration tests (apache#4623) * [MINOR] Change notification emails (apache#4626) * [ZEPPELIN-5902] Support Spark 3.4 (apache#4586) * [ZEPPELIN-5902] Support Spark 3.4 * Address comment * Bump shiro-core from 1.9.1 to 1.10.0 (apache#4481) Bumps [shiro-core](https://github.com/apache/shiro) from 1.9.1 to 1.10.0. - [Release notes](https://github.com/apache/shiro/releases) - [Changelog](https://github.com/apache/shiro/blob/main/RELEASE-NOTES) - [Commits](apache/shiro@shiro-root-1.9.1...shiro-root-1.10.0) --- updated-dependencies: - dependency-name: org.apache.shiro:shiro-core dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump snappy-java from 1.1.8.4 to 1.1.10.1 in /cassandra (apache#4619) * Update jetty to latest 9.x version (apache#4627) * [ZEPPELIN-5935] Update jsoup version (apache#4625) * Update jsoup version to 1.14.2 * Update jsoup version to 1.15.3 * Update jsoup to 1.16.1 * Replace Whitelist with Safelist * Update LICENSE * Bump h2 from 2.1.210 to 2.2.220 in /jdbc (apache#4630) * [HOTFIX] Validate note name (apache#4632) * [HOTFIX] Validate note name * [HOTFIX] Validate note name * [HOTFIX] Validate note name * Update zeppelin-server/src/test/java/org/apache/zeppelin/service/NotebookServiceTest.java Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * Update zeppelin-server/src/main/java/org/apache/zeppelin/service/NotebookService.java Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [HOTFIX] Fix commented --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [HOTFIX] avoid password leaks (apache#4634) * fixed minor formatting issues preventing the full build (apache#4620) Co-authored-by: Maksim Zinal <mzinal@ru.ibm.com> * Install holoview 1.16, 1.17 drops python 3.7 support see holoviz/holoviews#5695 (apache#4638) * Execute checkstyle during default build (apache#4637) * [ZEPPELIN-5207] Build with JDK 11 in CI (apache#4497) * Build and test with JDK 11 in CI * Fix enforcer plugin * JDK11 has an different order of Properties then JDK8 * Improve date and timeformat for jdk8 and jdk11 * Compile scala with nobootcp * add scala-xml for zeppelin-display * Change jdk for frontend ci tests * [ZEPPELIN-5946] Drop Spark 2.4,3.0,3.1 Support (apache#4640) * [ZEPPELIN-5945] Build Zeppelin-Distribution with JDK11 and use Spark 3.3 as default (apache#4639) * update docs to download redshift jdbc dependencies on migrated repo (apache#4642) * [ZEPPELIN-5955] migrate cassandra (apache#4649) * [ZEPPELIN-5951] migrate bigquery to Junit5 (apache#4645) * [ZEPPELIN-5954] migrate elasticsearch to Junit5 (apache#4648) * [ZEPPELIN-5950] Migrate sparql to Junit5 (apache#4644) * [ZEPPELIN-5952] migrate mongodb to Junit5 (apache#4646) * [ZEPPELIN-5949] Update testcontainers and migrate neo4j to Junit5 (apache#4643) * Bump org.apache.spark:spark-core_2.12 in /spark/spark3-shims (apache#4650) Bumps org.apache.spark:spark-core_2.12 from 3.1.1 to 3.3.3. --- updated-dependencies: - dependency-name: org.apache.spark:spark-core_2.12 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5848] migrate influxdb to Junit5 (apache#4647) * [ZEPPELIN-5961] migrate markdown interpreter to JUnit5 (apache#4656) * [ZEPPELIN-5960] migrate submarine to JUnit5 (apache#4655) * [ZEPPELIN-5958] Migrate shell to JUnit5 (apache#4653) * [ZEPPELIN-5959] migrate livy to JUnit5 (apache#4654) * [ZEPPELIN-5848] Junit5 Migration (apache#4641) * Migrate zeppelin-interpreter-integration * migrate hbase * migrate java * migrate jdbc * migrate kotlin interpreter * Migrate python interpreter * migrate rlang * migrate zeppelin-jupyter-interpreter * migrate zeppelin-jupyter * migrate spark-interpreter * Migrate file interpreter * Delete empty flink test * Migrate zeppelin-integration * Remove junit-vintage-engine where it's not needed * Add vintage engine for flink * migrate flink partially to junit5 * Update license * [ZEPPELIN-5965] Remove Kotlin Interpreter (apache#4659) * [ZEPPELIN-5965] Remove Kotlin Interpreter * fix * fix * fix * [ZEPPELIN-5962] LivyInterpreter support more parameter when create session (apache#4657) * LivyInterpreter support more parameter when create session * Add test for ZEPPELIN-5962 --------- Co-authored-by: mrzhao <mrzhao@iflytek.com> * [ZEPPELIN-5964] Fix renaming bug (apache#4658) * [ZEPPELIN-5964] Fix renaming bug * [ZEPPELIN-5964] Use StringUtils --------- Co-authored-by: Matthias Koch <matthias-a.koch@rohde-schwarz.com> * [ZEPPELIN-5792][FRONT_BUILD] Remove bower (apache#4651) * [ZEPPELIN-5792][FRONT_BUILD] Remove bower Co-Authored-By: holodazoltan <holoda@gmail.com> * [ZEPPELIN-5792] Fix broken package-lock.json * ZEPPELIN-5792 Wait before checking welcome page * [ZEPPELIN-5792] Remove npm update * [ZEPPELIN-5792] remove npm update * [ZEPPELIN-5792] Remove bower references --------- Co-authored-by: holodazoltan <holoda@gmail.com> * Bump org.xerial.snappy:snappy-java in /cassandra (apache#4664) Bumps [org.xerial.snappy:snappy-java](https://github.com/xerial/snappy-java) from 1.1.10.1 to 1.1.10.4. - [Release notes](https://github.com/xerial/snappy-java/releases) - [Commits](xerial/snappy-java@v1.1.10.1...v1.1.10.4) --- updated-dependencies: - dependency-name: org.xerial.snappy:snappy-java dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5946][FOLLOWUP] Use Spark 3.4.1 in default (apache#4652) * [ZEPPELIN-5946][FOLLOWUP] Use Spark 3.4.1 and Scala 2.12 in default * Update docs/setup/basics/how_to_build.md Co-authored-by: Matthias Koch <23187557+matthias-koch@users.noreply.github.com> * reflect * default 2.11 --------- Co-authored-by: Matthias Koch <23187557+matthias-koch@users.noreply.github.com> * [MINOR][NOTICE] Update copyright year in NOTICE (apache#4666) * [ZEPPELIN-5967] Remove support for deb packaging (apache#4670) * [ZEPPELIN-5946][FOLLOWUP] Clean up code for legacy Spark versions (apache#4668) * [ZEPPELIN-5946][FOLLOWUP] Clean up code for legacy Spark versions * eliminate the reflection * address * [ZEPPELIN-5968] Bump Jetty 9.4.52.v20230823 (apache#4673) * [ZEPPELIN-5966] Support Spark 3.5 (apache#4665) * [ZEPPELIN-5966] Support Spark 3.5 * empty * Bump @babel/traverse from 7.6.3 to 7.23.2 in /zeppelin-web-angular (apache#4679) Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.6.3 to 7.23.2. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse) --- updated-dependencies: - dependency-name: "@babel/traverse" dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump guava from 24.1.1-jre to 32.0.0-jre in /shell (apache#4615) Bumps [guava](https://github.com/google/guava) from 24.1.1-jre to 32.0.0-jre. - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) --- updated-dependencies: - dependency-name: com.google.guava:guava dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5972] Support Flink 1.17 (apache#4677) * Support Flink 1.17 * Bump Flink 1.17.1 * Fix package name * fix java 11 compile * empty --------- Co-authored-by: Jeff Zhang <zjffdu@apache.org> * [MINOR] Remove unused conda env for Flink 1.12 (apache#4680) * [ZEPPELIN-3725] Fix SQL injection (apache#4676) Co-authored-by: Khanh <vukh@amazon.com> * [ZEPPELIN-5875] Add: z.show works with subtypes of DataFrame (apache#4683) * [ZEPPELIN-5978] Remove support for old Flink 1.13 and 1.14 (apache#4688) * [ZEPPELIN-5978] Remove support for old Flink 1.13 and 1.14 * [ZEPPELIN-5979] Support and use Python 3.9 in default (apache#4690) * [MINOR] Fix log message in YarnAppMonitor (apache#4695) * [ZEPPELIN-5980] Merge zeppelin-display into spark-interperter (apache#4692) * [ZEPPELIN-5980] Merge zeppelin-display into spark-interperter * scalatest 3.0.9 to support scala 2.13 * nit * scalatest 3.2.15 * scalatest 3.2.0-SNAP10 * scalatest 3.2.15 * fix scala 2.13 compile * [ZEPPELIN-5983] Upgrade to NodeJS 16 (apache#4696) * [ZEPPELIN-5983] Upgrade to NodeJS 16 * empty * regenerate * [ZEPPELIN-5982] Merge flink-scala-parent module into flink-scala-2.12 (apache#4694) * [ZEPPELIN-5982] Merge flink-scala-parent module into flink-scala-2.12 * [ZEPPELIN-5970][ZEPPELIN-5971] bugs occur when zeppelin.livy.tableWithUTFCharacters is enabled (apache#4675) * fix error occurs when non-select SQL statement is executed and tableWithUTFCharacter is True * fix error occurs when non-primitive type of data is within json response such as array and tableWithUTFCharacter is True * rename custom function * fix bug and improve the performance to iterate over the entrySet. * remove nit --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * remove global scala-* profiles (apache#4698) * Bump up the version to 0.11.0 for release * [HOTFIX] Change the link of `helium.json` from S3 to zeppelin.apache.org (apache#4713) (cherry picked from commit 01231e6) * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url (apache#4709) * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url (cherry picked from commit e65b543) * [ZEPPELIN-5995] Update Kubernetes Library and hopefully fix flaky tests (apache#4712) (cherry picked from commit a57b4b2) * Bump org.postgresql:postgresql from 42.4.3 to 42.7.2 in /jdbc (apache#4723) Bumps [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) from 42.4.3 to 42.7.2. - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](https://github.com/pgjdbc/pgjdbc/commits) --- updated-dependencies: - dependency-name: org.postgresql:postgresql dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (cherry picked from commit 362a2e4) * [HOTFIX] Escape Ldap search filters (apache#4714) (cherry picked from commit 65d0bcc) * [HOTFIX] Escape envs when using `.conf` (apache#4715) (cherry picked from commit dd08a39) * Fix the new zeppelin ui. The specific reason is that the use of excessively wide column widths resulted in the remaining fields being squeezed out of the screen, and nz table did not have a scroll bar set to display scrolling. (apache#4727) (cherry picked from commit 50efcf8) * [HOTFIX] Escape HeliumPackage information (apache#4728) (cherry picked from commit 8368579) * [NO-ISSUE] Use reload4j instead of log4j (apache#4719) (cherry picked from commit d0a71c7) * [NO-ISSUE] Upgrade org.json jar (apache#4722) (cherry picked from commit 9cfc4bd) * [RELEASE] Bump the version from 0.11.0 to 0.11.1 * [HOTFIX] Disable shell interpreter (apache#4708) (cherry picked from commit 057480f) * [HOTFIX] Check permission when updating cron information (apache#4631) * [HOTFIX] Check permission when updating cron information * [HOTFIX] Fix commented * [HOTFIX] Check permission when updating cron information * [HOTFIX] Check permission when updating cron information * [HOTFIX] Check permission when updating cron information (cherry picked from commit 49e2740) * [HOTFIX] Remove shell interpreter from build * [HOTFIX] Fix Dockerfile * fix Dockerfile JAVA_HOME to openjdk11 (apache#4751) * Bump some apache common libs (apache#4757) * [ZEPPELIN-6022] Skip decryption of credentials.json when file is empty (apache#4765) * Skip decryption when empty * Use more elegant empty json string check * [ZEPPELIN-6028] Enhance default value assignment for ZEPPELIN_IDENT_STRING (apache#4772) (cherry picked from commit dbf112f) * [ZEPPELIN-6029] Set COPYFILE_DISABLE=1 for macOS tar (apache#4774) * [ZEPPELIN-6029] Add --disable-copyfile for macOS tar * COPYFILE_DISABLE=1 (cherry picked from commit 289e954) * [HOTFIX] Restore Shell interpreter * [HOTFIX] Fix tar command * [HOTFIX] Fix tar command * [HOTFIX] Fix gpg command * Version up to 0.11.2 * [ZEPPELIN-6035] fix Cron setting for Notebook (apache#4777) Fixes an issue where the Zeppelin Frontend was unable to create or update cron settings for any notebook. Fixes incorrect parsing of the roles submitted in the change request. * [ZEPPELIN-6051] Skip the hidden files in notebook listing (release-0.11) (apache#4796) * [HOTFIX] Escaping vulnerable text when modal opens (apache#4795) (cherry picked from commit 25b6001) * update scripts/docker/zeppelin/bin/Dockerfile to JDK11 (apache#4753) * update scripts/docker/zeppelin/bin/Dockerfile to JDK11 * update miniconda to py3.9 * Update Dockerfile to remove extra line (cherry picked from commit b61bfb5) * [MINOR] Remove duplicate entry in .gitignore ### What is this PR for? A few sentences describing the overall goals of the pull request's commits. First time? Check out the contributing guide - https://zeppelin.apache.org/contribution/contributions.html ### What type of PR is it? Bug Fix Improvement Feature Documentation Hot Fix Refactoring *Please leave your type of PR only* ### Todos * [ ] - Task ### What is the Jira issue? * Open an issue on Jira https://issues.apache.org/jira/browse/ZEPPELIN/ * Put link here, and add [ZEPPELIN-*Jira number*] in PR title, eg. [ZEPPELIN-533] ### How should this be tested? * Strongly recommended: add automated unit tests for any new or changed behavior * Outline any manual steps to test the PR here. ### Screenshots (if appropriate) ### Questions: * Does the license files need to update? * Is there breaking changes for older versions? * Does this needs documentation? Closes apache#4837 from MyLanPangzi/patch-2. Signed-off-by: Cheng Pan <chengpan@apache.org> (cherry picked from commit 35e1299) Signed-off-by: Cheng Pan <chengpan@apache.org> * Version up to 0.11.2 * fix --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Alex <aleksandrosansan@gmail.com> Signed-off-by: Cheng Pan <chengpan@apache.org> Co-authored-by: In-Kyu Kim <60086878+inkkim@users.noreply.github.com> Co-authored-by: PARK HYE WON <38900338+HYEEWON@users.noreply.github.com> Co-authored-by: Juyeon <proceane1@gmail.com> Co-authored-by: Jeff Zhang <zjffdu@apache.org> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> Co-authored-by: dntjr8096 <lkjs8269@naver.com> Co-authored-by: 배진우 <55564829+jinwoo-Bae@users.noreply.github.com> Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> Co-authored-by: Lu Gan <ganlute@163.com> Co-authored-by: glennlgan <glennlgan@tencent.com> Co-authored-by: JooYoungHun <jymk04130@gmail.com> Co-authored-by: Nelljun <34996983+nelljun@users.noreply.github.com> Co-authored-by: 조원형 <57468223+JoWonHyeung@users.noreply.github.com> Co-authored-by: KIM NAMGUE <knq512412@gmail.com> Co-authored-by: dwayne.knq <dwayne.knq@kakaocorp.com> Co-authored-by: Jiyun Park <51026374+PrimWILL@users.noreply.github.com> Co-authored-by: Lee Byonghun <dlqud19@gmail.com> Co-authored-by: Vishal Rao <vishalrao@gmail.com> Co-authored-by: kkoldduck2 <vkqmffjtm@naver.com> Co-authored-by: Gibaek Nam <gbnam29@gmail.com> Co-authored-by: gbnam <gbnam@diquest.com> Co-authored-by: yaini <80642154+yaini@users.noreply.github.com> Co-authored-by: jshjsh06 <35020221+jshjsh06@users.noreply.github.com> Co-authored-by: Paul Zhang <xzhangyao@126.com> Co-authored-by: zkyTech <zhangkunyuan@hotmail.com> Co-authored-by: zhangkunyuan <zhangkunyuan@cmhi.chinamobile.com> Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> Co-authored-by: Alex <aleksandrosansan@gmail.com> Co-authored-by: Michal Vince <vince.michal@gmail.com> Co-authored-by: Arnout Engelen <arnout@engelen.eu> Co-authored-by: Maziyar Panahi <maziyar.panahi@iscpif.fr> Co-authored-by: Johann Behr <j.behr@avm.de> Co-authored-by: Ankit Prakash Gupta <info.ankitp@gmail.com> Co-authored-by: Cheng Pan <pan3793@gmail.com> Co-authored-by: Arnout Engelen <arnout@bzzt.net> Co-authored-by: Cheng Pan <chengpan@apache.org> Co-authored-by: Thai Tran <tranvanthai@users.noreply.github.com> Co-authored-by: Phong Nguyen <genycopedison@gmail.com> Co-authored-by: qinbo12 <34186735+qinbo12@users.noreply.github.com> Co-authored-by: YiningGong <nicolasgongyn@gmail.com> Co-authored-by: Calvin Canh Tran <trandcanh@gmail.com> Co-authored-by: calvin.tran <calvin.tran@grabtaxi.com> Co-authored-by: 诸葛子房 <xiaoqiu2017wy@163.com> Co-authored-by: duanxiaoqiu <duanxiaoqiu@qiyi.com> Co-authored-by: zzm <xiaomin0322@sina.com> Co-authored-by: Xie Yi <105206850+xieyi888@users.noreply.github.com> Co-authored-by: Yi Xie <xieyi01@rd.netease.com> Co-authored-by: matthias-koch <Koch-Matthias@web.de> Co-authored-by: Matthias Koch <matthias-a.koch@rohde-schwarz.com> Co-authored-by: youshaojun <54707860+youshaojun@users.noreply.github.com> Co-authored-by: Shefali Singh <31477542+shefali163@users.noreply.github.com> Co-authored-by: Manhua <kevinjmh@qq.com> Co-authored-by: Maksim Zinal <MaxZinal@yandex.ru> Co-authored-by: Maksim Zinal <mzinal@ru.ibm.com> Co-authored-by: Changhoon Oh <81631424+okayhooni@users.noreply.github.com> Co-authored-by: mrzhao <imrzhao@qq.com> Co-authored-by: mrzhao <mrzhao@iflytek.com> Co-authored-by: Matthias Koch <23187557+matthias-koch@users.noreply.github.com> Co-authored-by: holodazoltan <holoda@gmail.com> Co-authored-by: Khanh Vu <vtkhanh@users.noreply.github.com> Co-authored-by: Khanh <vukh@amazon.com> Co-authored-by: levi0090 <147389858+levi0090@users.noreply.github.com> Co-authored-by: myongyun <984093369@qq.com> Co-authored-by: PJ Fanning <pjfanning@users.noreply.github.com> Co-authored-by: Gayle <9532712+flowy0@users.noreply.github.com> Co-authored-by: zeotuan <48720253+zeotuan@users.noreply.github.com> Co-authored-by: johannesschillinger-dm <136588873+johannesschillinger-dm@users.noreply.github.com> Co-authored-by: SeungYoung Oh <seung-00@naver.com> Co-authored-by: heerim <devheerim@gmail.com> Co-authored-by: hiscat <46845236+MyLanPangzi@users.noreply.github.com>

* [ZEPPELIN-5768] Remove scio interpreter (apache#4408) * [ZEPPELIN-5767] Update rimraf and scrollmonitor to the latest version (apache#4414) * [ZEPPELIN-3945] Create .gitattributes (apache#4409) * [ZEPPELIN-5761] Support flink 1.15.1 (apache#4404) * Bump aws-java-sdk-s3 in /zeppelin-plugins/notebookrepo/s3 (apache#4413) Bumps [aws-java-sdk-s3](https://github.com/aws/aws-sdk-java) from 1.11.736 to 1.12.261. - [Release notes](https://github.com/aws/aws-sdk-java/releases) - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.11.736...1.12.261) --- updated-dependencies: - dependency-name: com.amazonaws:aws-java-sdk-s3 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump kubernetes-client in /zeppelin-plugins/launcher/k8s-standard (apache#4411) Bumps [kubernetes-client](https://github.com/fabric8io/kubernetes-client) from 5.3.1 to 5.3.2. - [Release notes](https://github.com/fabric8io/kubernetes-client/releases) - [Changelog](https://github.com/fabric8io/kubernetes-client/blob/master/CHANGELOG.md) - [Commits](fabric8io/kubernetes-client@v5.3.1...v5.3.2) --- updated-dependencies: - dependency-name: io.fabric8:kubernetes-client dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump kotlin-stdlib from 1.3.50 to 1.6.0 in /kotlin (apache#4387) Bumps [kotlin-stdlib](https://github.com/JetBrains/kotlin) from 1.3.50 to 1.6.0. - [Release notes](https://github.com/JetBrains/kotlin/releases) - [Changelog](https://github.com/JetBrains/kotlin/blob/v1.6.0/ChangeLog.md) - [Commits](JetBrains/kotlin@v1.3.50...v1.6.0) --- updated-dependencies: - dependency-name: org.jetbrains.kotlin:kotlin-stdlib dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Revert "Bump kotlin-stdlib from 1.3.50 to 1.6.0 in /kotlin (apache#4387)" This reverts commit 5ba5300. * [ZEPPELIN-5777] Fix dead links in docs (apache#4418) * [ZEPPELIN-5770] Remove hazelcast jet interpreter (apache#4412) * [ZEPPELIN-5769] Roles in API-Request (apache#4407) * Add user roles to API Requests * Polish RestAPI * Use Boolean instead of boolean * Rename paragraphJobStatusList to paragraphs * Remove blank in .gitattributes (apache#4420) * [HOTFIX] - fix s3 enforcer (apache#4421) * Bump shiro-core from 1.8.0 to 1.9.1 (apache#4397) Bumps [shiro-core](https://github.com/apache/shiro) from 1.8.0 to 1.9.1. - [Release notes](https://github.com/apache/shiro/releases) - [Changelog](https://github.com/apache/shiro/blob/main/RELEASE-NOTES) - [Commits](apache/shiro@shiro-root-1.8.0...shiro-root-1.9.1) --- updated-dependencies: - dependency-name: org.apache.shiro:shiro-core dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5780] Unify paragraph errors (apache#4422) * [ZEPPELIN-5779] Remove pig interpreter (apache#4424) * [ZEPPELIN-5779] Remove pig interpreter * Automatically updated after build * [ZEPPELIN-5771]Zeppelin Interpreter Support Alluxio From 1.0.0 To 2.5.0 (apache#4410) * [ZEPPELIN-5771]Zeppelin Interpreter Support Alluxio From 1.0.0 To 2.5.0 * [ZEPPELIN-5771]Fix CheckStyle * Adjust CI test case to pass alluxio 2.x * Fix check style * adapt zeppelin ci * remove unnecessary test cases Co-authored-by: glennlgan <glennlgan@tencent.com> * [ZEPPELIN-5766] Window compilation (.appveyor.yml) (apache#4426) * add build script to appveyor.yml * add -DskipTest option to build sciprt on appveyor.yml * add fork count configuration of maven-surefire-plugin to pom.xml * add new line to appveyor.yml for EOF Warning * remove forkcount configuration of surefire plugin in pom.xml and add mode-javascript.js to karma.conf.js * remove karma.conf.js file auto-generated by building * Bump protobuf-java from 3.12.4 to 3.16.1 in /alluxio (apache#4429) Bumps [protobuf-java](https://github.com/protocolbuffers/protobuf) from 3.12.4 to 3.16.1. - [Release notes](https://github.com/protocolbuffers/protobuf/releases) - [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/generate_changelog.py) - [Commits](protocolbuffers/protobuf@v3.12.4...v3.16.1) --- updated-dependencies: - dependency-name: com.google.protobuf:protobuf-java dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Remove geode interpreter (apache#4430) * [ZEPPELIN-4794] Add comment about changing localhost when running Zeppelin on WSL or Windows (apache#4431) * [ZEPPELIN-4871] Update Livy interpreter to 0.7.1 (apache#4433) * Upgrade livy interpreter version from 0.5.0 to 0.7.1 * fix livy version to 0.7.1-incubating * fix livy-0-5 version title to livy-0-7 Co-authored-by: dwayne.knq <dwayne.knq@kakaocorp.com> * Refactor: remove ignite interpreter and related things form the repository (apache#4428) * [ZEPPELIN-5788] Remove beam interpreter (apache#4435) * [ZEPPELIN-5788] Remove beam interpreter * [ZEPPELIN-5788] remove beam profile when publish to maven * [ZEPPELIN-5789] Update Dockerfile to use JDK instead of JRE (apache#4436) * Update Dockerfile to use JDK instead of JRE Fixes issues such as trying to add a new interpreter belonging to "jdbc" group having hive-jdbc conf results in missing dependencies (tools.jar) and such. * Add comment based on review. * Remove sap interpreter (apache#4437) * [ZEPPELIN-5791] Update hbase interpreter version from 1.0.0 to 2.4.12 (apache#4438) * update hbase interpreter version from 1.0.0 to 2.4.12 * exclude glassfish in hbase-server * Remove hbase-server in hbase interpreter Co-authored-by: gbnam <gbnam@diquest.com> * [ZEPPELIN-5638] Add flink job interval check (apache#4427) * [ZEPPELIN-5785] Remove ksql interpreter (apache#4434) Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * Bump gson from 2.2 to 2.8.9 in /shell (apache#4381) Bumps [gson](https://github.com/google/gson) from 2.2 to 2.8.9. - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/master/CHANGELOG.md) - [Commits](google/gson@gson-2.2...gson-parent-2.8.9) --- updated-dependencies: - dependency-name: com.google.code.gson:gson dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5799] Enriched LdapRealm configuration in Shiro Authentication and fixed some wrong config items. (apache#4444) * [ZEPPELIN-5801] add configuration_storage.md and rename storage.md to notebook_storage.md (apache#4446) Co-authored-by: zhangkunyuan <zhangkunyuan@cmhi.chinamobile.com> * [Hotfix] Typo in shiro_authentication.md (apache#4447) Remove one `ldapRealm.contextFactory.authenticationMechanism` * Bump hadoop-common from 3.2.3 to 3.2.4 in /alluxio (apache#4442) Bumps hadoop-common from 3.2.3 to 3.2.4. --- updated-dependencies: - dependency-name: org.apache.hadoop:hadoop-common dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [MINOR] Add some GitHub features for PR (apache#4452) * [ZEPPELIN-5802][MINOR] fix rimraf version (apache#4448) * [MINOR] fix rimraf version * fix rimraf version in zeppelin-web/package-lock.json * Bump gson from 2.8.2 to 2.8.9 in /zeppelin-integration (apache#4370) Bumps [gson](https://github.com/google/gson) from 2.8.2 to 2.8.9. - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/master/CHANGELOG.md) - [Commits](google/gson@gson-parent-2.8.2...gson-parent-2.8.9) --- updated-dependencies: - dependency-name: com.google.code.gson:gson dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump gson from 2.8.5 to 2.8.9 in /influxdb (apache#4380) Bumps [gson](https://github.com/google/gson) from 2.8.5 to 2.8.9. - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/master/CHANGELOG.md) - [Commits](google/gson@gson-parent-2.8.5...gson-parent-2.8.9) --- updated-dependencies: - dependency-name: com.google.code.gson:gson dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump gson from 2.8.6 to 2.8.9 in /bigquery (apache#4372) Bumps [gson](https://github.com/google/gson) from 2.8.6 to 2.8.9. - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/master/CHANGELOG.md) - [Commits](google/gson@gson-parent-2.8.6...gson-parent-2.8.9) --- updated-dependencies: - dependency-name: com.google.code.gson:gson dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump xercesImpl from 2.11.0.SP5 to 2.12.2 in /jdbc (apache#4384) Bumps xercesImpl from 2.11.0.SP5 to 2.12.2. --- updated-dependencies: - dependency-name: xerces:xercesImpl dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump postgresql from 42.3.3 to 42.4.1 in /jdbc (apache#4440) Bumps [postgresql](https://github.com/pgjdbc/pgjdbc) from 42.3.3 to 42.4.1. - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](pgjdbc/pgjdbc@REL42.3.3...REL42.4.1) --- updated-dependencies: - dependency-name: org.postgresql:postgresql dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Remove useless pom file `pom-groovy-only.xml` in `zeppelin-groovy` module (apache#4454) * [ZEPPELIN-5804] support python 3.10 (apache#4453) * [ZEPPELIN-5810] Allow both package names jupyter_client and jupyter-client (apache#4455) * [MINOR] [JDBC] JDBCInterpreterTest.testMultiTenant_* improvement (apache#4462) * [ZEPPELIN-5819] Update to newer geoip jar (apache#4464) * [ZEPPELIN-5800] upgrade version of apache commons configuration2 to 2.8 (apache#4445) * GitHub Workflows security hardening (apache#4467) * build: harden frontend.yml permissions Signed-off-by: Alex <aleksandrosansan@gmail.com> * build: harden core.yml permissions Signed-off-by: Alex <aleksandrosansan@gmail.com> * [ZEPPELIN-5694] Support apache kyuubi (apache#4392) * [ZEPPELIN-5694] Support apache kyuubi * SUPPORT KERBEROS MODE * [ZEPPELIN-5760] fix passing configs to spark in k8s (apache#4398) * passing static arguments to spark-submit command so driver can pick them up * fixed static names * removed duplicate driver memory setting * fixed driver extra java opts * extend test * use ZEPPELIN_SPARK_CONF env var to pass spark configurations * fix import wildmark * fix separator * remove redundant concatenation * - remove redundant concatenation - fix tests * [ZEPPELIN-5826] Activate credentialReplacement test (apache#4468) * Update protobuf-maven-plugin from 0.5.0 to 0.6.1 (apache#4469) Notably, this version no longer overwrites the protoc compiler executable each time the project is built, which is convenient on systems where it needs some post-processing (current NixOS). * [ZEPPELIN-5824] Checkstyle (apache#4466) * update livy archive name (apache#4470) From 0.6.0 onwards the archive name is prefixed with 'apache-'. As far as I can see there are no scripts that still want to support older versions of livy, so it is probably safe to update the script like this. I did not test beyond invoking the script. * [ZEPPELIN-5829] upgrade gson to 2.8.9 due to CVE-2022-25647 (apache#4476) * [ZEPPELIN-5833] Enable Cassandra for JDK11 ### What is this PR for? This PR updates scala for the cassandra interpreter to 2.12 ### What type of PR is it? - Improvement ### Todos * [ ] - Verify with real Cassandra Backend ### What is the Jira issue? * https://issues.apache.org/jira/browse/ZEPPELIN-5833 ### How should this be tested? * CI ### Questions: * Does the licenses files need to update? Yes * Is there breaking changes for older versions? Yes * Does this needs documentation? No Author: Philipp Dallig <philipp.dallig@gmail.com> Closes apache#4479 from Reamer/cassandra_jdk11 and squashes the following commits: 4ba0dbc [Philipp Dallig] Enable Cassandra for JDK11 * [ZEPPELIN-5834] Remove last references to Hadoop 2.6 as JDK11 is not supported. ### What is this PR for? This PR updates Hadoop 2.6 dependencies to 2.7. ### What type of PR is it? Improvement ### What is the Jira issue? * https://issues.apache.org/jira/browse/ZEPPELIN-5834 ### How should this be tested? * CI ### Questions: * Does the licenses files need to update? No * Is there breaking changes for older versions? No * Does this needs documentation? No Author: Philipp Dallig <philipp.dallig@gmail.com> Closes apache#4484 from Reamer/hadoop_jdk11 and squashes the following commits: 88d3d47 [Philipp Dallig] Remove last references to Hadoop 2.6 as JDK11 is not supported. * [ZEPPELIN-5819] Configures ivy to download jar libraries only from remote ### What is this PR for? Configures ivy to download jar libraries only from remote and ignore local jars ### What type of PR is it? * Hot Fix ### What is the Jira issue? * https://issues.apache.org/jira/browse/ZEPPELIN-5819 ### How should this be tested? * CI ### Questions: * Does the licenses files need to update? No * Is there breaking changes for older versions? No * Does this needs documentation? No Author: Philipp Dallig <philipp.dallig@gmail.com> Closes apache#4495 from Reamer/ivy_download and squashes the following commits: b74631a [Philipp Dallig] Configures ivy to download jar libraries only from remote * [ZEPPELIN-5191] Fix the wrong Docker image name in zeppelin-server.yaml (apache#4439) * Fix the wrong Docker image name - There has never been any Docker image named `zeppelin-interpreter` or `zeppelin-server`. - The latest version also should be 0.10.1 * Add more instructions for running Zeppelin on K8s - How to build zeppelin-distribution - How to build zeppelin-server - How to build zeppelin-interpreter - How to use ./k8s/zeppelin-server.yaml script to correctly launch Zeppelin on Kubernetes cluster * Adding a reminder to adjust images' names This commit will remove the step-by-step editing of zeppelin-server.yaml and replacing it with a simple reminder to adjust the names in this file * [ZEPPELIN-5836] Remove scala-2.10 because it has no JDK 11 Support (apache#4494) * Scala adjustments with jdk11 * Update some interpreter to support jdk11 * Bump commons-text from 1.8 to 1.10.0 (apache#4493) Bumps commons-text from 1.8 to 1.10.0. --- updated-dependencies: - dependency-name: org.apache.commons:commons-text dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5839] Update mockito and powermock (apache#4499) * [ZEPPELIN-5493] Remove prefix in jdbc interpreter (apache#4463) * Remove prefix in jdbc interpreter * update docs * [ZEPPELIN-5123] Add an example grafana dashboard (apache#4295) * Add an example grafana dashboard * Add dashboard mention to doc * Add operation/monitoring link to setup dropdown Co-authored-by: Johann Behr <j.behr@avm.de> * [ZEPPELIN-5832] Use protoc-jar-maven-plugin, which has a good IDE support (apache#4480) * [ZEPPELIN-5815] Frontend CI jobs improvement (apache#4498) * disable enforcer plugin * not verify all * VERIFY TWO JOB * Add test dependencies for `zeppelin-web` . Change the scope of dependencies in `zeppelin-web` and `zeppelin-integration` to test. * adjustment * use scala profile * Add web-dist profile * Use scala profile in zeppelin-integration * Enable using-source-tree Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [ZEPPELIN-5843] Miscellaneous polishing (apache#4504) * Remove maven-dependency-plugin out of poms where it has no effect * Use the same frontend-maven-plugin version in zeppelin-zengine as defined in parent pom.xml * [HOTFIX] Correct Docker build * [ZEPPELIN-5763] NoClassDefFoundError in spark interpreter: org/apache/commons/lang/StringUtils (apache#4501) * [ZEPPELIN-5763] java.lang.NoClassDefFoundError: org/apache/commons/lang/StringUtils * Remove commons-lang * [ZEPPELIN-5845] Cluster polish (apache#4505) * [ZEPPELIN-5842] Maven-Plugin management (apache#4503) * Plugin versions are managed in parent zeppelin pom * Overwrite plugin version in pluginManagement section * Add project.build.sourceEncoding UTF-8 into root pom.xml * [ZEPPELIN-5612] Upgrade junit 4 to 5 (apache#4321) * [ZEPPELIN-5612] Upgrade junit 4 to 5 * Refactor `UtilTest.java` with jUnit 5 as an example. * update for review * [ZEPPELIN-5849] MIGRATE JDBC MODULE TO JUNIT 5 (apache#4511) * [MINOR] Remove warnning (apache#4513) * [MINOR] Remove lifecycle-mapping for elicpse m2e * Fix checkstyle * [ZEPPELIN-5847] Polish Maven tasks (apache#4509) * maven-remote-resources-plugin is managed by apache parent pom * Maven version check is configured in apache parent * Rename enforcer rule * [MINOR] Polish maven plugins for root pom (apache#4512) * Bump postgresql from 42.4.1 to 42.4.3 in /jdbc (apache#4517) Bumps [postgresql](https://github.com/pgjdbc/pgjdbc) from 42.4.1 to 42.4.3. - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](pgjdbc/pgjdbc@REL42.4.1...REL42.4.3) --- updated-dependencies: - dependency-name: org.postgresql:postgresql dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [MINOR] Remove `maven-eclipse-plugin` (apache#4518) * [MINOR] Use Maven CLI option instead of a logger adjustment. (apache#4521) * [ZEPPELIN-5859] Upgrading alluxio client library to latest stable release 2.9.0 (apache#4524) * [ZEPPELIN-5859] Upgrading alluxio client library to latest stable release 2.9.0 Upgrading alluxio client library to latest stable release * [ZEPPELIN-5859] Importing only the essential classes in AlluxioInterpreter.java * [ZEPPELIN-5859] Fixing the checkstyle Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * Update alluxio/src/main/java/org/apache/zeppelin/alluxio/AlluxioInterpreter.java Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * [MINOR] Add github autolink to ZEPPELIN (apache#4528) * [MINOR] Fix tiny typo (apache#4530) * [ZEPPELIN-5856] Bump bouncycastle 1.70 (apache#4522) * [ZEPPELIN-5856] Bump bouncycastle 1.70 * nit * nit * nit * [Minor][ZEPPELIN-5859] Fixing the styling issue (apache#4534) * [ZEPPELIN-5859] Fixing the styling issue * [ZEPPELIN-5859] Fixing indentation * [ZEPPELIN-5863] Warn not to expose the docker daemon to untrusted users (apache#4526) * [MINOR] Fix Appveyor error (apache#4520) * [ZEPPELIN-5867][JDBC] Exclude hbase-server from hive-jdbc (apache#4536) * [ZEPPELIN-5857] Bump gRPC and protobuf to support build on macOS M1 chips (apache#4523) * [ZEPPELIN-5857] Bump gRPC and protobuf to support build on macOS M1 chips * fix * nit * [ZEPPELIN-5869] Remove Incubating from Kyuubi reference (apache#4540) * [ZEPPELIN-5873] Update github actions (apache#4542) * [MINOR] Specify branch names for Github action (apache#4529) * [MINOR] Specify branch names for Github action * [MINOR] Specify branch names for Github action * [MINOR] Ignore depdendabot's push triggering Github Actions * [MINOR] Support aarch for frontend plugin (apache#4541) * [MINOR] Support aarch for frontend plugin * [MINOR] Support aarch for frontend plugin * [MINOR] Support aarch for frontend plugin * Divide plugin version and dependency version * [HOTFIX] Github Actions workaround (apache#4550) * Correct small typo (apache#4551) * Bump json5 from 1.0.1 to 1.0.2 in /zeppelin-web-angular (apache#4544) Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2. - [Release notes](https://github.com/json5/json5/releases) - [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md) - [Commits](json5/json5@v1.0.1...v1.0.2) --- updated-dependencies: - dependency-name: json5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump eventsource from 1.0.7 to 1.1.1 in /zeppelin-web-angular (apache#4376) Bumps [eventsource](https://github.com/EventSource/eventsource) from 1.0.7 to 1.1.1. - [Release notes](https://github.com/EventSource/eventsource/releases) - [Changelog](https://github.com/EventSource/eventsource/blob/master/HISTORY.md) - [Commits](EventSource/eventsource@v1.0.7...v1.1.1) --- updated-dependencies: - dependency-name: eventsource dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [MINOR] Fix wrong format for github actions of 'branches-ignore' (apache#4552) * [MINOR] document 'markdown' display system (apache#4549) * [MINOR] document 'markdown' display system * Update docs/usage/display_system/basic.md Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * [MINOR] Disable depeanabot branches for AppVeyor (apache#4555) * [ZEPPELIN-5875] Fix flaky tests in `core-modules` (apache#4556) * Bump global-modules-path and webpack-cli in /zeppelin-web (apache#4554) Removes [global-modules-path](https://github.com/rosen-vladimirov/global-modules-path). It's no longer used after updating ancestor dependency [webpack-cli](https://github.com/webpack/webpack-cli). These dependencies need to be updated together. Removes `global-modules-path` Updates `webpack-cli` from 3.1.2 to 3.3.12 - [Release notes](https://github.com/webpack/webpack-cli/releases) - [Changelog](https://github.com/webpack/webpack-cli/blob/master/CHANGELOG.md) - [Commits](webpack/webpack-cli@v3.1.2...v3.3.12) --- updated-dependencies: - dependency-name: global-modules-path dependency-type: indirect - dependency-name: webpack-cli dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5874] polish flink code base (apache#4553) * Remove conda cache suffix (apache#4557) * [ZEPPELIN-5861] Correct shading Prefix (apache#4545) * Add Process ErrorMessage * change shade prefix * Run with pre modules to fill the maven reactor * spark-interpreter has no scala test so we can remove the maven plugin * Fix flaky python test * Use shaded version of io.grpc:grpc-netty (io.grrpc:grpc-netty-shaded) * Adjust interpreter tests * Remove maven-dependency-plugin, because downloaded artefacts are attached to classpath * [ZEPPELIN-5844] Support flink 1.16 (apache#4506) * [ZEPPELIN-5844] Support flink 1.16 * Update github action * Fix CI * save * Fix flink test * Remove -B in core.yaml * [ZEPPELIN-5855] Refactor docker plugin and remove powermock (apache#4519) * Refactor docker plugin * prevent infinite loop * [HOTFIX] Fix CI failure due to sqlalchemy api change (apache#4561) * Bump jettison from 1.4.0 to 1.5.2 (apache#4543) Bumps [jettison](https://github.com/jettison-json/jettison) from 1.4.0 to 1.5.2. - [Release notes](https://github.com/jettison-json/jettison/releases) - [Commits](jettison-json/jettison@jettison-1.4.0...jettison-1.5.2) --- updated-dependencies: - dependency-name: org.codehaus.jettison:jettison dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5846] Remove support flink 1.12 (apache#4558) * save * Fix flink test * [ZEPPELIN-5846] Remove support of flink 1.12 * [MINOR] Use flink-113 as default profile (apache#4566) * [ZEPPELIN-5884] fix: wrong path of test folder in Java Interpreter (apache#4569) * [ZEPPELIN-5881] Missing dependency when package zeppelin-server module (apache#4570) * [ZEPPELIN-5879] Migrate Zeppelin Plugins to JUnit5 (apache#4559) * use junit5 in k8s plugin * junit for other plugins * Remove juint4 in zeppelin plugins * Remove visibility modifier in test classes * Apply suggestions from code review Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> --------- Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> * [ZEPPELIN-5885] Solve the concurrency problem caused by multiple concurrent calls to note clone (apache#4563) * Bump jettison from 1.5.2 to 1.5.4 (apache#4575) Bumps [jettison](https://github.com/jettison-json/jettison) from 1.5.2 to 1.5.4. - [Release notes](https://github.com/jettison-json/jettison/releases) - [Commits](jettison-json/jettison@jettison-1.5.2...jettison-1.5.4) --- updated-dependencies: - dependency-name: org.codehaus.jettison:jettison dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump jackson-databind from 2.12.6.1 to 2.12.7.1 in /neo4j (apache#4576) Bumps [jackson-databind](https://github.com/FasterXML/jackson) from 2.12.6.1 to 2.12.7.1. - [Release notes](https://github.com/FasterXML/jackson/releases) - [Commits](https://github.com/FasterXML/jackson/commits) --- updated-dependencies: - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5891]Delete cloneNoteMeta method and replace it with createNoteAuth. (apache#4578) Co-authored-by: gyn <gyn> * [ZEPPELIN-5855] remove more powermock usages to support junit5 (apache#4580) * remove more powermock usages to support junit5 * Migrate alluxio tests to junit5 * Remove powermock also from spark tests * Update zeppelin-server/src/test/java/org/apache/zeppelin/service/shiro/AbstractShiroTest.java Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> --------- Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> * [MINOR] Update doc for flink 1.16 (apache#4572) Co-authored-by: calvin.tran <calvin.tran@grabtaxi.com> * [ZEPPELIN-5900] Fix RemoteSchedulerTest (apache#4582) * [ZEPPELIN-5903] Improve LRU NoteCache - Add a cleanup (apache#4590) * Improve LRU NoteCache - Add a cleanup * Remove debug code Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> --------- Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> * [ZEPPELIN-5898] fix:download csv data error (apache#4593) Co-authored-by: duanxiaoqiu <duanxiaoqiu@qiyi.com> * [ZEPPELIN-5893] NPE in ParagraphResult when getting progress from paragraphJson (apache#4579) * Update ParagraphResult.java paragraphJson.getInt("progress") Add Judgment * Update ParagraphResult.java format * Update ParagraphResult.java Optimize code indentation * Use wildcard generic for job and remove generic for JobListener (apache#4592) * [ZEPPELIN-5851][JUnit 5 Migration] Module: zeppelin-zengine (apache#4532) * [JUnit 5 Migration] Module: zeppelin-zengine * update for review * Fix TimeoutLifecycleManagerTest * Remove mockito-junit-jupiter --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [ZEPPELIN-5907][JUnit 5 Migration] Module zeppelin-interpreter (apache#4595) * Migrate zeppelin-interpreter to JUnit5 * Stabilize the tests * [ZEPPELIN-5908] JDBCSecurityImpl should relogin when authType='kerberos' to void kerberos ticket expired (apache#4597) Co-authored-by: Yi Xie <xieyi01@rd.netease.com> * Update atomix to 3.0.0-rc5, which removes hamcrest as a compilation dependency of zeppelin-interpreter (apache#4601) * [ZEPPELIN-5850] Migrate zeppelin-server to Junit5 (apache#4600) * [ZEPPELIN-5897] Remove launcher properties and only use the current context properties (apache#4602) * Use Classloader class for flink creation (apache#4605) * Integration tests with newer spark version (apache#4604) * [ZEPPELIN-5919] Compile scala only where scala code is present (apache#4607) * [ZEPPELIN-5920] Fix deprecation warnings (apache#4609) * [ZEPPELIN-5920] Fix deprecation warnings * [ZEPPELIN-5920] Filter deprecationWarnings only * [ZEPPELIN-5920] Replace warning supression with a counter --------- Co-authored-by: Matthias Koch <matthias-a.koch@rohde-schwarz.com> * [ZEPPELIN-5921] Fix sync with remote repository (apache#4610) * [ZEPPELIN-5921] Fix sync with remote repository * [ZEPPELIN-5921] Add missing imports * [ZEPPELIN-5921] Add missing import --------- Co-authored-by: Matthias Koch <matthias-a.koch@rohde-schwarz.com> * [ZEPPELIN-5927]Solve the concurrency calls to `saveNoteAuth`. (apache#4613) * [ZEPPELIN-5926] Remove map entries if Collection is empty (apache#4612) * Remove map entries if Collection is empty * Add license header to new class * Update kubernetes client to 5.4.1 and fix unit tests (apache#4133) * Upgraded h2 version in jdbc (apache#4618) * [HOTFIX] Add bank.csv for integration test (apache#4617) * Remove ivy and oro (apache#4622) * [ZEPPELIN-5933] Polish jetty (apache#4621) * Rewrite index.html handling * Polish initialize of the Rest API * Don't break the WebApp Classloader Isolation * Use default SessionHandler * Add simple session tests * [HOTFIX] Change the location of bank.csv to fix the integration tests (apache#4623) * [MINOR] Change notification emails (apache#4626) * [ZEPPELIN-5902] Support Spark 3.4 (apache#4586) * [ZEPPELIN-5902] Support Spark 3.4 * Address comment * Bump shiro-core from 1.9.1 to 1.10.0 (apache#4481) Bumps [shiro-core](https://github.com/apache/shiro) from 1.9.1 to 1.10.0. - [Release notes](https://github.com/apache/shiro/releases) - [Changelog](https://github.com/apache/shiro/blob/main/RELEASE-NOTES) - [Commits](apache/shiro@shiro-root-1.9.1...shiro-root-1.10.0) --- updated-dependencies: - dependency-name: org.apache.shiro:shiro-core dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump snappy-java from 1.1.8.4 to 1.1.10.1 in /cassandra (apache#4619) * Update jetty to latest 9.x version (apache#4627) * [ZEPPELIN-5935] Update jsoup version (apache#4625) * Update jsoup version to 1.14.2 * Update jsoup version to 1.15.3 * Update jsoup to 1.16.1 * Replace Whitelist with Safelist * Update LICENSE * Bump h2 from 2.1.210 to 2.2.220 in /jdbc (apache#4630) * [HOTFIX] Validate note name (apache#4632) * [HOTFIX] Validate note name * [HOTFIX] Validate note name * [HOTFIX] Validate note name * Update zeppelin-server/src/test/java/org/apache/zeppelin/service/NotebookServiceTest.java Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * Update zeppelin-server/src/main/java/org/apache/zeppelin/service/NotebookService.java Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [HOTFIX] Fix commented --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * [HOTFIX] avoid password leaks (apache#4634) * fixed minor formatting issues preventing the full build (apache#4620) Co-authored-by: Maksim Zinal <mzinal@ru.ibm.com> * Install holoview 1.16, 1.17 drops python 3.7 support see holoviz/holoviews#5695 (apache#4638) * Execute checkstyle during default build (apache#4637) * [ZEPPELIN-5207] Build with JDK 11 in CI (apache#4497) * Build and test with JDK 11 in CI * Fix enforcer plugin * JDK11 has an different order of Properties then JDK8 * Improve date and timeformat for jdk8 and jdk11 * Compile scala with nobootcp * add scala-xml for zeppelin-display * Change jdk for frontend ci tests * [ZEPPELIN-5946] Drop Spark 2.4,3.0,3.1 Support (apache#4640) * [ZEPPELIN-5945] Build Zeppelin-Distribution with JDK11 and use Spark 3.3 as default (apache#4639) * update docs to download redshift jdbc dependencies on migrated repo (apache#4642) * [ZEPPELIN-5955] migrate cassandra (apache#4649) * [ZEPPELIN-5951] migrate bigquery to Junit5 (apache#4645) * [ZEPPELIN-5954] migrate elasticsearch to Junit5 (apache#4648) * [ZEPPELIN-5950] Migrate sparql to Junit5 (apache#4644) * [ZEPPELIN-5952] migrate mongodb to Junit5 (apache#4646) * [ZEPPELIN-5949] Update testcontainers and migrate neo4j to Junit5 (apache#4643) * Bump org.apache.spark:spark-core_2.12 in /spark/spark3-shims (apache#4650) Bumps org.apache.spark:spark-core_2.12 from 3.1.1 to 3.3.3. --- updated-dependencies: - dependency-name: org.apache.spark:spark-core_2.12 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5848] migrate influxdb to Junit5 (apache#4647) * [ZEPPELIN-5961] migrate markdown interpreter to JUnit5 (apache#4656) * [ZEPPELIN-5960] migrate submarine to JUnit5 (apache#4655) * [ZEPPELIN-5958] Migrate shell to JUnit5 (apache#4653) * [ZEPPELIN-5959] migrate livy to JUnit5 (apache#4654) * [ZEPPELIN-5848] Junit5 Migration (apache#4641) * Migrate zeppelin-interpreter-integration * migrate hbase * migrate java * migrate jdbc * migrate kotlin interpreter * Migrate python interpreter * migrate rlang * migrate zeppelin-jupyter-interpreter * migrate zeppelin-jupyter * migrate spark-interpreter * Migrate file interpreter * Delete empty flink test * Migrate zeppelin-integration * Remove junit-vintage-engine where it's not needed * Add vintage engine for flink * migrate flink partially to junit5 * Update license * [ZEPPELIN-5965] Remove Kotlin Interpreter (apache#4659) * [ZEPPELIN-5965] Remove Kotlin Interpreter * fix * fix * fix * [ZEPPELIN-5962] LivyInterpreter support more parameter when create session (apache#4657) * LivyInterpreter support more parameter when create session * Add test for ZEPPELIN-5962 --------- Co-authored-by: mrzhao <mrzhao@iflytek.com> * [ZEPPELIN-5964] Fix renaming bug (apache#4658) * [ZEPPELIN-5964] Fix renaming bug * [ZEPPELIN-5964] Use StringUtils --------- Co-authored-by: Matthias Koch <matthias-a.koch@rohde-schwarz.com> * [ZEPPELIN-5792][FRONT_BUILD] Remove bower (apache#4651) * [ZEPPELIN-5792][FRONT_BUILD] Remove bower Co-Authored-By: holodazoltan <holoda@gmail.com> * [ZEPPELIN-5792] Fix broken package-lock.json * ZEPPELIN-5792 Wait before checking welcome page * [ZEPPELIN-5792] Remove npm update * [ZEPPELIN-5792] remove npm update * [ZEPPELIN-5792] Remove bower references --------- Co-authored-by: holodazoltan <holoda@gmail.com> * Bump org.xerial.snappy:snappy-java in /cassandra (apache#4664) Bumps [org.xerial.snappy:snappy-java](https://github.com/xerial/snappy-java) from 1.1.10.1 to 1.1.10.4. - [Release notes](https://github.com/xerial/snappy-java/releases) - [Commits](xerial/snappy-java@v1.1.10.1...v1.1.10.4) --- updated-dependencies: - dependency-name: org.xerial.snappy:snappy-java dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5946][FOLLOWUP] Use Spark 3.4.1 in default (apache#4652) * [ZEPPELIN-5946][FOLLOWUP] Use Spark 3.4.1 and Scala 2.12 in default * Update docs/setup/basics/how_to_build.md Co-authored-by: Matthias Koch <23187557+matthias-koch@users.noreply.github.com> * reflect * default 2.11 --------- Co-authored-by: Matthias Koch <23187557+matthias-koch@users.noreply.github.com> * [MINOR][NOTICE] Update copyright year in NOTICE (apache#4666) * [ZEPPELIN-5967] Remove support for deb packaging (apache#4670) * [ZEPPELIN-5946][FOLLOWUP] Clean up code for legacy Spark versions (apache#4668) * [ZEPPELIN-5946][FOLLOWUP] Clean up code for legacy Spark versions * eliminate the reflection * address * [ZEPPELIN-5968] Bump Jetty 9.4.52.v20230823 (apache#4673) * [ZEPPELIN-5966] Support Spark 3.5 (apache#4665) * [ZEPPELIN-5966] Support Spark 3.5 * empty * Bump @babel/traverse from 7.6.3 to 7.23.2 in /zeppelin-web-angular (apache#4679) Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.6.3 to 7.23.2. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse) --- updated-dependencies: - dependency-name: "@babel/traverse" dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump guava from 24.1.1-jre to 32.0.0-jre in /shell (apache#4615) Bumps [guava](https://github.com/google/guava) from 24.1.1-jre to 32.0.0-jre. - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) --- updated-dependencies: - dependency-name: com.google.guava:guava dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [ZEPPELIN-5972] Support Flink 1.17 (apache#4677) * Support Flink 1.17 * Bump Flink 1.17.1 * Fix package name * fix java 11 compile * empty --------- Co-authored-by: Jeff Zhang <zjffdu@apache.org> * [MINOR] Remove unused conda env for Flink 1.12 (apache#4680) * [ZEPPELIN-3725] Fix SQL injection (apache#4676) Co-authored-by: Khanh <vukh@amazon.com> * [ZEPPELIN-5875] Add: z.show works with subtypes of DataFrame (apache#4683) * [ZEPPELIN-5978] Remove support for old Flink 1.13 and 1.14 (apache#4688) * [ZEPPELIN-5978] Remove support for old Flink 1.13 and 1.14 * [ZEPPELIN-5979] Support and use Python 3.9 in default (apache#4690) * [MINOR] Fix log message in YarnAppMonitor (apache#4695) * [ZEPPELIN-5980] Merge zeppelin-display into spark-interperter (apache#4692) * [ZEPPELIN-5980] Merge zeppelin-display into spark-interperter * scalatest 3.0.9 to support scala 2.13 * nit * scalatest 3.2.15 * scalatest 3.2.0-SNAP10 * scalatest 3.2.15 * fix scala 2.13 compile * [ZEPPELIN-5983] Upgrade to NodeJS 16 (apache#4696) * [ZEPPELIN-5983] Upgrade to NodeJS 16 * empty * regenerate * [ZEPPELIN-5982] Merge flink-scala-parent module into flink-scala-2.12 (apache#4694) * [ZEPPELIN-5982] Merge flink-scala-parent module into flink-scala-2.12 * [ZEPPELIN-5970][ZEPPELIN-5971] bugs occur when zeppelin.livy.tableWithUTFCharacters is enabled (apache#4675) * fix error occurs when non-select SQL statement is executed and tableWithUTFCharacter is True * fix error occurs when non-primitive type of data is within json response such as array and tableWithUTFCharacter is True * rename custom function * fix bug and improve the performance to iterate over the entrySet. * remove nit --------- Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> * remove global scala-* profiles (apache#4698) * Bump up the version to 0.11.0 for release * [HOTFIX] Change the link of `helium.json` from S3 to zeppelin.apache.org (apache#4713) (cherry picked from commit 01231e6) * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url (apache#4709) * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url * [ZEPPELIN-5990] Disable sensitive configuration for JDBC url (cherry picked from commit e65b543) * [ZEPPELIN-5995] Update Kubernetes Library and hopefully fix flaky tests (apache#4712) (cherry picked from commit a57b4b2) * Bump org.postgresql:postgresql from 42.4.3 to 42.7.2 in /jdbc (apache#4723) Bumps [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) from 42.4.3 to 42.7.2. - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](https://github.com/pgjdbc/pgjdbc/commits) --- updated-dependencies: - dependency-name: org.postgresql:postgresql dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (cherry picked from commit 362a2e4) * [HOTFIX] Escape Ldap search filters (apache#4714) (cherry picked from commit 65d0bcc) * [HOTFIX] Escape envs when using `.conf` (apache#4715) (cherry picked from commit dd08a39) * Fix the new zeppelin ui. The specific reason is that the use of excessively wide column widths resulted in the remaining fields being squeezed out of the screen, and nz table did not have a scroll bar set to display scrolling. (apache#4727) (cherry picked from commit 50efcf8) * [HOTFIX] Escape HeliumPackage information (apache#4728) (cherry picked from commit 8368579) * [NO-ISSUE] Use reload4j instead of log4j (apache#4719) (cherry picked from commit d0a71c7) * [NO-ISSUE] Upgrade org.json jar (apache#4722) (cherry picked from commit 9cfc4bd) * [RELEASE] Bump the version from 0.11.0 to 0.11.1 * [HOTFIX] Disable shell interpreter (apache#4708) (cherry picked from commit 057480f) * [HOTFIX] Check permission when updating cron information (apache#4631) * [HOTFIX] Check permission when updating cron information * [HOTFIX] Fix commented * [HOTFIX] Check permission when updating cron information * [HOTFIX] Check permission when updating cron information * [HOTFIX] Check permission when updating cron information (cherry picked from commit 49e2740) * [HOTFIX] Remove shell interpreter from build * [HOTFIX] Fix Dockerfile * fix Dockerfile JAVA_HOME to openjdk11 (apache#4751) * Bump some apache common libs (apache#4757) * [ZEPPELIN-6022] Skip decryption of credentials.json when file is empty (apache#4765) * Skip decryption when empty * Use more elegant empty json string check * [ZEPPELIN-6028] Enhance default value assignment for ZEPPELIN_IDENT_STRING (apache#4772) (cherry picked from commit dbf112f) * [ZEPPELIN-6029] Set COPYFILE_DISABLE=1 for macOS tar (apache#4774) * [ZEPPELIN-6029] Add --disable-copyfile for macOS tar * COPYFILE_DISABLE=1 (cherry picked from commit 289e954) * [HOTFIX] Restore Shell interpreter * [HOTFIX] Fix tar command * [HOTFIX] Fix tar command * [HOTFIX] Fix gpg command * Version up to 0.11.2 * [ZEPPELIN-6035] fix Cron setting for Notebook (apache#4777) Fixes an issue where the Zeppelin Frontend was unable to create or update cron settings for any notebook. Fixes incorrect parsing of the roles submitted in the change request. * [ZEPPELIN-6051] Skip the hidden files in notebook listing (release-0.11) (apache#4796) * [HOTFIX] Escaping vulnerable text when modal opens (apache#4795) (cherry picked from commit 25b6001) * update scripts/docker/zeppelin/bin/Dockerfile to JDK11 (apache#4753) * update scripts/docker/zeppelin/bin/Dockerfile to JDK11 * update miniconda to py3.9 * Update Dockerfile to remove extra line (cherry picked from commit b61bfb5) * [MINOR] Remove duplicate entry in .gitignore ### What is this PR for? A few sentences describing the overall goals of the pull request's commits. First time? Check out the contributing guide - https://zeppelin.apache.org/contribution/contributions.html ### What type of PR is it? Bug Fix Improvement Feature Documentation Hot Fix Refactoring *Please leave your type of PR only* ### Todos * [ ] - Task ### What is the Jira issue? * Open an issue on Jira https://issues.apache.org/jira/browse/ZEPPELIN/ * Put link here, and add [ZEPPELIN-*Jira number*] in PR title, eg. [ZEPPELIN-533] ### How should this be tested? * Strongly recommended: add automated unit tests for any new or changed behavior * Outline any manual steps to test the PR here. ### Screenshots (if appropriate) ### Questions: * Does the license files need to update? * Is there breaking changes for older versions? * Does this needs documentation? Closes apache#4837 from MyLanPangzi/patch-2. Signed-off-by: Cheng Pan <chengpan@apache.org> (cherry picked from commit 35e1299) Signed-off-by: Cheng Pan <chengpan@apache.org> * Version up to 0.11.2 * fix * added parallel --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Alex <aleksandrosansan@gmail.com> Signed-off-by: Cheng Pan <chengpan@apache.org> Co-authored-by: In-Kyu Kim <60086878+inkkim@users.noreply.github.com> Co-authored-by: PARK HYE WON <38900338+HYEEWON@users.noreply.github.com> Co-authored-by: Juyeon <proceane1@gmail.com> Co-authored-by: Jeff Zhang <zjffdu@apache.org> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jongyoul Lee <jongyoul@gmail.com> Co-authored-by: dntjr8096 <lkjs8269@naver.com> Co-authored-by: 배진우 <55564829+jinwoo-Bae@users.noreply.github.com> Co-authored-by: Philipp Dallig <philipp.dallig@gmail.com> Co-authored-by: Lu Gan <ganlute@163.com> Co-authored-by: glennlgan <glennlgan@tencent.com> Co-authored-by: JooYoungHun <jymk04130@gmail.com> Co-authored-by: Nelljun <34996983+nelljun@users.noreply.github.com> Co-authored-by: 조원형 <57468223+JoWonHyeung@users.noreply.github.com> Co-authored-by: KIM NAMGUE <knq512412@gmail.com> Co-authored-by: dwayne.knq <dwayne.knq@kakaocorp.com> Co-authored-by: Jiyun Park <51026374+PrimWILL@users.noreply.github.com> Co-authored-by: Lee Byonghun <dlqud19@gmail.com> Co-authored-by: Vishal Rao <vishalrao@gmail.com> Co-authored-by: kkoldduck2 <vkqmffjtm@naver.com> Co-authored-by: Gibaek Nam <gbnam29@gmail.com> Co-authored-by: gbnam <gbnam@diquest.com> Co-authored-by: yaini <80642154+yaini@users.noreply.github.com> Co-authored-by: jshjsh06 <35020221+jshjsh06@users.noreply.github.com> Co-authored-by: Paul Zhang <xzhangyao@126.com> Co-authored-by: zkyTech <zhangkunyuan@hotmail.com> Co-authored-by: zhangkunyuan <zhangkunyuan@cmhi.chinamobile.com> Co-authored-by: Guanhua Li <guanhua_li@foxmail.com> Co-authored-by: Alex <aleksandrosansan@gmail.com> Co-authored-by: Michal Vince <vince.michal@gmail.com> Co-authored-by: Arnout Engelen <arnout@engelen.eu> Co-authored-by: Maziyar Panahi <maziyar.panahi@iscpif.fr> Co-authored-by: Johann Behr <j.behr@avm.de> Co-authored-by: Ankit Prakash Gupta <info.ankitp@gmail.com> Co-authored-by: Cheng Pan <pan3793@gmail.com> Co-authored-by: Arnout Engelen <arnout@bzzt.net> Co-authored-by: Cheng Pan <chengpan@apache.org> Co-authored-by: Thai Tran <tranvanthai@users.noreply.github.com> Co-authored-by: Phong Nguyen <genycopedison@gmail.com> Co-authored-by: qinbo12 <34186735+qinbo12@users.noreply.github.com> Co-authored-by: YiningGong <nicolasgongyn@gmail.com> Co-authored-by: Calvin Canh Tran <trandcanh@gmail.com> Co-authored-by: calvin.tran <calvin.tran@grabtaxi.com> Co-authored-by: 诸葛子房 <xiaoqiu2017wy@163.com> Co-authored-by: duanxiaoqiu <duanxiaoqiu@qiyi.com> Co-authored-by: zzm <xiaomin0322@sina.com> Co-authored-by: Xie Yi <105206850+xieyi888@users.noreply.github.com> Co-authored-by: Yi Xie <xieyi01@rd.netease.com> Co-authored-by: matthias-koch <Koch-Matthias@web.de> Co-authored-by: Matthias Koch <matthias-a.koch@rohde-schwarz.com> Co-authored-by: youshaojun <54707860+youshaojun@users.noreply.github.com> Co-authored-by: Shefali Singh <31477542+shefali163@users.noreply.github.com> Co-authored-by: Manhua <kevinjmh@qq.com> Co-authored-by: Maksim Zinal <MaxZinal@yandex.ru> Co-authored-by: Maksim Zinal <mzinal@ru.ibm.com> Co-authored-by: Changhoon Oh <81631424+okayhooni@users.noreply.github.com> Co-authored-by: mrzhao <imrzhao@qq.com> Co-authored-by: mrzhao <mrzhao@iflytek.com> Co-authored-by: Matthias Koch <23187557+matthias-koch@users.noreply.github.com> Co-authored-by: holodazoltan <holoda@gmail.com> Co-authored-by: Khanh Vu <vtkhanh@users.noreply.github.com> Co-authored-by: Khanh <vukh@amazon.com> Co-authored-by: levi0090 <147389858+levi0090@users.noreply.github.com> Co-authored-by: myongyun <984093369@qq.com> Co-authored-by: PJ Fanning <pjfanning@users.noreply.github.com> Co-authored-by: Gayle <9532712+flowy0@users.noreply.github.com> Co-authored-by: zeotuan <48720253+zeotuan@users.noreply.github.com> Co-authored-by: johannesschillinger-dm <136588873+johannesschillinger-dm@users.noreply.github.com> Co-authored-by: SeungYoung Oh <seung-00@naver.com> Co-authored-by: heerim <devheerim@gmail.com> Co-authored-by: hiscat <46845236+MyLanPangzi@users.noreply.github.com>

[ZEPPELIN-5990] Disable sensitive configuration for JDBC url

7b2a6f7

jongyoul requested review from Reamer, huage1994 and zjffdu February 8, 2024 01:29

[ZEPPELIN-5990] Disable sensitive configuration for JDBC url

2779840

zjffdu approved these changes Feb 19, 2024

View reviewed changes

jongyoul merged commit e65b543 into apache:master Feb 19, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[ZEPPELIN-5990] Disable sensitive configuration for JDBC url#4709

[ZEPPELIN-5990] Disable sensitive configuration for JDBC url#4709
jongyoul merged 2 commits into
apache:masterfrom
jongyoul:ZEPPELIN-5990

jongyoul commented Feb 8, 2024

Uh oh!

jongyoul commented Feb 19, 2024

Uh oh!

pjfanning commented Jul 2, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

jongyoul commented Feb 8, 2024

What is this PR for?

What type of PR is it?

Todos

What is the Jira issue?

How should this be tested?

Screenshots (if appropriate)

Questions:

Uh oh!

jongyoul commented Feb 19, 2024

Uh oh!

pjfanning commented Jul 2, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants