[Snyk] Upgrade thrift from 0.11.0 to 0.15.0

[snyk-bot]

Snyk has created this PR to upgrade thrift from 0.11.0 to 0.15.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.
• The recommended version was released 4 months ago, on 2021-09-11.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Denial of Service (DoS) SNYK-JS-THRIFT-474613	635/1000 Why? Has a fix available, CVSS 8.2	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: thrift

• 0.15.0 - 2021-09-11
  

  For release 0.15.0 head over to the official release download source:
  http://thrift.apache.org/download

  The assets below are added by Github based on the release tag and they may therefore not match the checkums.

• 0.14.2 - 2021-06-17
  

  For release 0.14.0 head over to the official release download source:
  http://thrift.apache.org/download

  The assets below are added by Github based on the release tag and they may therefore not match the checkums.

• 0.14.1 - 2021-03-08
  

  For release 0.14.1 head over to the official release download source:
  http://thrift.apache.org/download

  The assets below are added by Github based on the release tag and they may therefore not match the checkums.

• 0.14.0 - 2021-02-12
  

  For release 0.14.0 head over to the official release download source:
  http://thrift.apache.org/download

  The assets below are added by Github based on the release tag and they may therefore not match the checkums.

• 0.13.0 - 2019-11-18
  

  For release 0.13.0 head over to the official release download source:
  http://thrift.apache.org/download

  The assets below are added by Github based on the release tag and they may therefore not match the checkums.

• 0.13.0-hotfix.1 - 2020-10-20
• 0.12.0 - 2019-02-12
  

  Apache Thrift Release 0.12.0

• 0.11.0 - 2018-01-15
  

  Version 0.11.0

from thrift GitHub release notes

Commit messages

Package name: thrift

• 8317ec4 Branch 0.15.0
• 67bf304 THRIFT-5459: Fix breaking issue when adding a new exception
• 5f829f1 go: Fix things staticcheck complains about
• 57b9aa0 THRIFT-5447: Update supported Go versions
• efff4a2 THRIFT-5453: Defer DNS from NewTSocketConf to TSocket.Open
• 9a815fa Version 0.15.0
• 2c78047 THRIFT-4797: Go import improvements
• c8ae621 THRIFT-5445 "cancellationToken" cannot be used as argument name
• 273607d THRIFT-5444 Netstd generator produces uncompileable code for enums ending with "_result" or "_args"
• f695535 THRIFT-5389: Fix const generation for optional fields
• 68c0272 Update README for go library
• 47bf0e4 THRIFT-5442 Separate client service calls into send/recv methods and make them public
• fb1d50d THRIFT-5439 Lua Generator does not support const i64
• 8bd8230 THRIFT-5421 c_glib:Fix the problem of incorrect setting of errno in some files
• c06ab4c Small bug in Rust generated code for writing container types
• b98e06d THRIFT-5440: Allow php8 in composer.json
• d8c4345 fix isOpen return None, to be consistent with other transport
• 44e8a43 Rust: Upgrade dependency integer-encoding to 3.0
• 4434ee9 THRIFT-5438 Inconsistent handling of exceptions during message read vs. message write phase
• 3b68653 THRIFT-5437 Make TProtocolImpl CTOR virtual
• 7391a31 uncaught_exception -> uncaught_exceptions
• 582293b Adds support for building C++ codegen on Solaris
• 3c3a389 THRIFT-5425 Throw an exception when reading TSimpleJson in Java
• 5cada6a THRIFT-5433: Add Counter To Thread Name of TThreadPoolServer

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs