[BUILD-684] Update JackRabbit to version 2.20.6 Created: 10/Feb/22 Updated: 19/Oct/22 Resolved: 08/Aug/22 |
|
| Status: | Closed |
| Project: | Build |
| Component/s: | BOM |
| Affects Version/s: | None |
| Fix Version/s: | BOM 6.2.23 |
| Type: | Task | Priority: | Neutral |
| Reporter: | Federico Grilli | Assignee: | Federico Grilli |
| Resolution: | Done | Votes: | 0 |
| Labels: | foundation_team | ||
| Σ Remaining Estimate: | Not Specified | Remaining Estimate: | Not Specified |
| Σ Time Spent: | Not Specified | Time Spent: | Not Specified |
| Σ Original Estimate: | Not Specified | Original Estimate: | Not Specified |
| Issue Links: |
|
||||||||||||||||||||||||
| Sub-Tasks: |
|
||||||||||||||||||||||||
| Template: |
|
||||||||||||||||||||||||
| Acceptance criteria: |
[X]*
Update 3rd party deps which need to be kept in sync
|
||||||||||||||||||||||||
| Task DoR: |
Empty
|
||||||||||||||||||||||||
| Release notes required: |
Yes
|
||||||||||||||||||||||||
| Date of First Response: | |||||||||||||||||||||||||
| Team: | |||||||||||||||||||||||||
| Description |
|
Waiting for JackRabbit 2.20.6 which is using Tika 2.4.0 (not vulnerable for now), see also https://issues.apache.org/jira/browse/JCR-4787 Skipped 2.20.5 released on 10th March 2022 https://jackrabbit.apache.org/jcr/downloads.html#v2.20 as it has vulnerable Tika version (see BUILD-813).
|
| Comments |
| Comment by Federico Grilli [ 01/Apr/22 ] | |||||||||||||||||||||||||||||||||
|
mdrapela/docuteam We keep Tika and H2 db 3rd party libs in sync with JackRabbit. Most notably Tika went from 1.27 to 2.2.1 | |||||||||||||||||||||||||||||||||
| Comment by Federico Grilli [ 05/Apr/22 ] | |||||||||||||||||||||||||||||||||
|
Reverting update for now as JR SearchIndex is broken due to exclusion of junrar (license incompatibility issue to be checked) java.lang.NoClassDefFoundError: com/github/junrar/exception/RarException
| |||||||||||||||||||||||||||||||||
| Comment by Federico Grilli [ 08/Aug/22 ] | |||||||||||||||||||||||||||||||||
|
mdrapela/docs The most noticeable change is that now Magnolia, like JR itself, will provide only tika-parsers-standard out of the box. Additional parsers can be added separately, see also https://cwiki.apache.org/confluence/display/TIKA/Migrating+to+Tika+2.0.0 In Tika 2.0.0 release notes some breaking changes are mentioned but none should affect JR/Magnolia. Finally, 3rd party transitive dependencies inherited from Tika have changed (some removed, others added or upgraded). Here is an overview
|