mirror of
https://github.com/infiniflow/ragflow.git
synced 2026-07-04 18:45:38 +08:00
### What problem does this PR solve? Upgrades Apache Tika from 3.2.3 to 3.3.0 to address the security vulnerability GHSA-72hv-8253-57qq (TIKA-4687). Closes #13601 ### Type of change - [x] Bug Fix (non-breaking change which fixes an issue) ### Changes - `Dockerfile`: Updated tika JAR filename and `TIKA_SERVER_JAR` env var from 3.2.3 to 3.3.0 - `Dockerfile.deps`: Updated tika JAR filename in COPY instruction from 3.2.3 to 3.3.0 - `download_deps.py`: Updated both Maven Central and Huawei Cloud mirror download URLs from 3.2.3 to 3.3.0 ### References - Apache Tika 3.3.0 release: https://www.apache.org/dyn/closer.lua/tika/3.3.0/tika-app-3.3.0.jar - TIKA-4687: https://issues.apache.org/jira/browse/TIKA-4687 - GHSA-72hv-8253-57qq
514 B
514 B