From 9a632536d3f83ea8fe0ec9524a3bb543f3ff8ba4 Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Thu, 30 Oct 2025 18:35:22 +0000
Subject: [PATCH] fix: pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-10734078
---
 pom.xml | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/pom.xml b/pom.xml
index e1a675969b0cc..a658450964856 100644
--- a/pom.xml
+++ b/pom.xml
@@ -138,14 +138,14 @@
     <spark.version>${spark3.version}</spark.version>
     <spark2.version>2.4.4</spark2.version>
     <spark3.version>3.5.1</spark3.version>
-    <sparkbundle.version></sparkbundle.version>
+    <sparkbundle.version/>
     <flink1.19.version>1.19.1</flink1.19.version>
     <flink1.18.version>1.18.1</flink1.18.version>
     <flink1.17.version>1.17.1</flink1.17.version>
     <flink1.16.version>1.16.2</flink1.16.version>
     <flink1.15.version>1.15.1</flink1.15.version>
     <flink1.14.version>1.14.5</flink1.14.version>
-    <flink.version>${flink1.19.version}</flink.version>
+    <flink.version>2.0.1</flink.version>
     <hudi.flink.module>hudi-flink1.19.x</hudi.flink.module>
     <flink.bundle.version>1.19</flink.bundle.version>
     <!-- This is fixed to match with version from flink-avro -->
@@ -679,7 +679,7 @@
               <license implementation="org.apache.rat.analysis.license.SimplePatternBasedLicense">
                 <licenseFamilyCategory>AL2 </licenseFamilyCategory>
                 <licenseFamilyName>Apache License 2.0</licenseFamilyName>
-                <notes />
+                <notes/>
                 <patterns>
                   <pattern>Licensed to the Apache Software Foundation (ASF) under one</pattern>
                 </patterns>
@@ -2601,7 +2601,7 @@
     <profile>
       <id>flink1.18</id>
       <properties>
-        <flink.version>${flink1.18.version}</flink.version>
+        <flink.version>2.0.1</flink.version>
         <hudi.flink.module>hudi-flink1.18.x</hudi.flink.module>
         <flink.bundle.version>1.18</flink.bundle.version>
         <orc.flink.version>1.5.6</orc.flink.version>
@@ -2618,7 +2618,7 @@
     <profile>
       <id>flink1.17</id>
       <properties>
-        <flink.version>${flink1.17.version}</flink.version>
+        <flink.version>2.0.1</flink.version>
         <hudi.flink.module>hudi-flink1.17.x</hudi.flink.module>
         <flink.bundle.version>1.17</flink.bundle.version>
         <orc.flink.version>1.5.6</orc.flink.version>
@@ -2635,7 +2635,7 @@
     <profile>
       <id>flink1.16</id>
       <properties>
-        <flink.version>${flink1.16.version}</flink.version>
+        <flink.version>2.0.1</flink.version>
         <hudi.flink.module>hudi-flink1.16.x</hudi.flink.module>
         <flink.bundle.version>1.16</flink.bundle.version>
         <orc.flink.version>1.5.6</orc.flink.version>
@@ -2652,7 +2652,7 @@
     <profile>
     <id>flink1.15</id>
       <properties>
-        <flink.version>${flink1.15.version}</flink.version>
+        <flink.version>2.0.1</flink.version>
         <hudi.flink.module>hudi-flink1.15.x</hudi.flink.module>
         <flink.bundle.version>1.15</flink.bundle.version>
         <orc.flink.version>1.5.6</orc.flink.version>
@@ -2669,7 +2669,7 @@
     <profile>
       <id>flink1.14</id>
       <properties>
-        <flink.version>${flink1.14.version}</flink.version>
+        <flink.version>2.0.1</flink.version>
         <hudi.flink.module>hudi-flink1.14.x</hudi.flink.module>
         <flink.bundle.version>1.14</flink.bundle.version>
         <orc.flink.version>1.5.6</orc.flink.version>