From fd2e85c78f17d36695bf105701536a0d20a0f0d3 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 28 Aug 2025 21:39:23 +0000
Subject: [PATCH] fix: pulsar-io/hdfs2/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEAVRO-8161188
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-6254296
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-6254297
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEAVRO-5926693
---
 pulsar-io/hdfs2/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pulsar-io/hdfs2/pom.xml b/pulsar-io/hdfs2/pom.xml
index 1752369535d95..3d3ee3608c18c 100644
--- a/pulsar-io/hdfs2/pom.xml
+++ b/pulsar-io/hdfs2/pom.xml
@@ -48,7 +48,7 @@
   	<dependency>
   		<groupId>org.apache.hadoop</groupId>
   		<artifactId>hadoop-client</artifactId>
-  		<version>2.8.5</version>
+  		<version>3.4.2</version>
         <exclusions>
             <exclusion>
                 <groupId>log4j</groupId>