Comments (8)
py-ranoid
commented on May 10, 2024
Hey @gerashegalov
I'm guessing this issue is still concern since helloworld/gradle/spark.gradle and templates/simple/spark.gradle are duplicates of gradle/spark.gradle but are still being tracked by git.
In order to keep a single spark.gradle file, can we simply replace the spark.gradle paths in build.gradle to reference spark.gradle as ../gradle/spark.gradle ?
PS. I'm fairly new to the project. Pardon me if I'm missing something. ๐
from transmogrifai.
gerashegalov
commented on May 10, 2024
Hi @py-ranoid, thanks for looking into this issue. It makes sense, however if possible we should strive to use absolute paths built from project properties (to avoid dealing with relative path attacks with symlinks etc).
from transmogrifai.
py-ranoid
commented on May 10, 2024
How about keeping keeping only spark.gradle in the repository but copying it to helloworld/gradle/ and templates/simple/ during installation ?
from transmogrifai.
py-ranoid
commented on May 10, 2024
@tovbinm @gerashegalov Could you suggest a solution?
- Removing
helloworld/gradle/spark.gradleandtemplates/simple/spark.gradleand referring togradle/spark.gradleusing relative paths - Keeping only
spark.gradlebut copying it tohelloworld/gradle/andtemplates/simple/during installation
from transmogrifai.
gerashegalov
commented on May 10, 2024
since helloworld is a source-controlled directory rather than installed than 1 seems better, (and I think you should be able to construct an absolute path.
from transmogrifai.
py-ranoid
commented on May 10, 2024
@gerashegalov In that case, can I replace
apply from: 'gradle/spark.gradle
with
apply from: "${rootProject.projectDir}/../gradle/spark.gradle"
in helloworld/build.gradle ?
Would this still be vulnerable to a relative path attack ?
Also, I noticed that the following are duplicates too.
helloworld/gradle/scalastyle-config.xmlandgradle/scalastyle-config.xml.helloworld/gradle/wrapper/*andgradle/wrapper/*
Would you suggest factoring these out as well ?
from transmogrifai.
py-ranoid
commented on May 10, 2024
@gerashegalov @tovbinm Thoughts?
from transmogrifai.
gerashegalov
commented on May 10, 2024
Hi @py-ranoid I suggest you try it out and don't hesitate to submit a PR. We can discuss it more concretely on the PR. It does not have to be perfect, just something to iterate on. The preference is to avoid '..'
from transmogrifai.
Related Issues (20)
- Did the documentation site's domain name expire? HOT 2
- cannot be cast to [Lcom.salesforce.op.stages.impl.feature.TextStats; HOT 5
- Model saving and loading behavior changed since #475 HOT 1
- MultiClassClassificationModelsToTry and BinaryClassificationModelsToTry not contains OpMultilayerPerceptronClassifier HOT 2
- Caused by: java.lang.ClassCastException: java.lang.Double cannot be cast to java.lang.String at com.salesforce.op.features.types.FeatureTypeSparkConverter$$anonfun$2.apply(FeatureTypeSparkConverter.scala:146) HOT 9
- Testing something HOT 1
- Unnecessary codec factory initialization in readAsString HOT 1
- Release drafter
- UV Computation HOT 2
- Normalize special characters in string
- CDH 6.3.2 not worked,throw NoClassDefFoundError( com.fasterxml.jackson.module.scala.modifiers.EitherModule) HOT 3
- How to use feature selection with no model training and optimization? HOT 8
- Failed to run titanic example, got java.lang.AbstractMethodError HOT 2
- build fails on AArch64, Fedora 33 HOT 1
- Changing imputation for nulls in DateToUnitCircleTransformer
- Make RecordInsightsLOCO perform reasonable calculation on numeric features and fix the name to reflect actual calculation. HOT 1
- The effect of random seeds on results ? HOT 5
- Migrating Documentation Page to Docusaurus 2
- Two cache miss case
- เนเธเธดเธ
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from transmogrifai.