Upgrade helix-core to 1.4.3 to address CVE-2023-38647

ShahimSharafudeen · ShahimSharafudeen · commit 4efb71c3f118 · 2025-08-18T21:58:31.000+05:30
diff --git a/presto-pinot-toolkit/pom.xml b/presto-pinot-toolkit/pom.xml
@@ -26,6 +26,12 @@
                 <artifactId>javax.annotation-api</artifactId>
                 <version>1.3.2</version>
             </dependency>
+
+            <dependency>
+                <groupId>org.apache.helix</groupId>
+                <artifactId>helix-core</artifactId>
+                <version>1.4.3</version>
+            </dependency>
         </dependencies>
     </dependencyManagement>
 
diff --git a/presto-pinot/pom.xml b/presto-pinot/pom.xml
@@ -25,6 +25,12 @@
                 <artifactId>javax.annotation-api</artifactId>
                 <version>1.3.2</version>
             </dependency>
+
+            <dependency>
+                <groupId>org.apache.helix</groupId>
+                <artifactId>helix-core</artifactId>
+                <version>1.4.3</version>
+            </dependency>
         </dependencies>
     </dependencyManagement>
 
