jbonofre commented on issue #14100: URL: https://github.com/apache/iceberg/issues/14100#issuecomment-3306939816
Good catch. I think @adutra is right: I took a quick look and indeed using the same `S3V4RestSignerClient` doesn't seem to be safe in this use case. From "ASF process mentoring", I second @snazy. The Apache Iceberg project has security entry on the website: https://iceberg.apache.org/contribute/ It points to https://www.apache.org/security/ explaining how to report potential security vulnerabilities. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
