Migrate Apache HttpClient Library to v5.x+ #1800
Labels
priority: p3
Desirable enhancement or fix. May not be included in next release.
type: feature request
‘Nice-to-have’ improvement, new feature or different behavior or design.
Comments
lqiu96
added
type: feature request
|
Better yet, replace it entirely with Java 11's HttpClient and eliminate another dependency. |
gcf-owl-bot bot
added a commit
that referenced
this issue
Jun 22, 2023
…a 8 (#1800) * Our Java projects are configured to produce Java 8-compatible bytecode via https://github.com/googleapis/java-shared-config/blob/main/pom.xml#L848. This unit test change ensures this config is applied correctly. * This change also switches the JDK distribution of GitHub Actions to temurin from zulu. * For the repositories that mark "dependencies (8)" and "dependencies (11)" as required, they should point to only "dependencies (17)" via `.github/sync-repo-settings.yaml` and repo's Settings tab. Source-Link: googleapis/synthtool@cbe0100 Post-Processor: gcr.io/cloud-devrel-public-resources/owlbot-java:latest@sha256:32851debfefed2b66038e0141f1b5c2103bb59ba80b7475adbc10ef7abab3de7
|
Duplicate of #1205 |
|
As mentioned in the duplicate issue (I don't know which one is considered active) there is now a dependency on an Apache library that is EOL. This poses a security risk for all that use this google library. Is there any chance of this getting fixed soon? I don't have my hopes up given the low priority, but one can ask. :) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem? Please describe.
Apache HttpClient v4.x+ is no longer being maintained. Outside of security vulnerabilities, new features and fixes are going into v5.x+.
Past Issue:
#1791
Describe the solution you'd like
Migrate to Apache HttpClient v5.x+.
The text was updated successfully, but these errors were encountered: