jdcloud-api / jdcloud-sdk-java Goto Github PK
View Code? Open in Web Editor NEWLicense: Apache License 2.0
jdcloud-sdk-java's People
Contributors
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot]")
Stargazers
Watchers
Forkers
shijunlee hownever superyanyan apatriot xjm123 edwinlly tanc009 wyqbxzy guocheng39 zhangycjob xinweiw dezhiding bok-henry zljxh 2423389364 appleyard99 zhiguohe hhhcommon bjhanfeng 13078263112 chengsoft618 maxiaoshan 304840508 qianpeng2 czllfy woaixiatian liangzy3 jdcloud-apigateway damonficus shliu11 bellmit lanzycode qingqinz wuyang0527 jdkbean cvedetect zhangshilei361 renkun2010 oniubi aayers-ghwjdcloud-sdk-java's Issues
弹性伸缩相关的 SDK 什么时候出呢?
rt
RDS 创建数据库接口400
error":{"code":400,"message":"Create database failed","status":"ResourceError.NotFound"}
我调试了看到instanceId 字段(RDS 实例ID,唯一标识一个RDS实例 )我填写了我云数据库 RDS上创建好的那个RDS的ID 但是他报400,我随便填一个错误的内容也是400,我不填就是"error":{"code":401,"message":"sign result is not same [gw]","status":"ACCESS_ERROR"} 说明我字段没问题,set的值有问题,请问https://docs.jdcloud.com/cn/rds/api/createdatabase 接口上的instanceId 我应该填什么值
copyright 2018-2025 这个需要改一下
pom.xml 没有指定compiler plugin 版本
[WARNING]
[WARNING] Some problems were encountered while building the effective model for com.jdcloud.sdk:kms:jar:0.1.1
[WARNING] 'build.plugins.plugin.version' for org.apache.maven.plugins:maven-compiler-plugin is missing. @ line 69, column 15
[WARNING]
[WARNING] It is highly recommended to fix these problems because they threaten the stability of your build.
[WARNING]
[WARNING] For this reason, future Maven versions might no longer support building such malformed projects.
[WARNING]
小伙子,你得抓紧升级下,依赖和漏洞太多,开源库不是这么玩的
加油啊,小伙子……
同学,您这个项目引入了61个开源组件,存在22个漏洞,辛苦升级一下
检测到 jdcloud-api/jdcloud-sdk-java 一共引入了61个开源组件,存在22个漏洞
漏洞标题:Fastjson <=1.2.68 远程代码执行漏洞
缺陷组件:com.alibaba:[email protected]
漏洞编号:
漏洞描述:Fastjson 是Java语言实现的快速JSON解析和生成器,在<=1.2.68的版本中攻击者可通过精心构造的JSON请求,远程执行恶意代码。
漏洞原因:
Fastjson采用黑白名单的方法来防御反序列化漏洞,导致当黑客不断发掘新的反序列化Gadgets类时,发现在autoType关闭的情况下仍然可能可以绕过黑白名单防御机制,造成远程命令执行漏洞。
国家漏洞库信息:https://www.cnvd.org.cn/flaw/show/CNVD-2020-30827
影响范围:(∞, 1.2.69)
最小修复版本:1.2.69
缺陷组件引入路径:com.jdcloud.sdk:[email protected]>com.jdcloud.sdk:[email protected]>com.jdcloud.sdk:[email protected]>com.jdcloud.sdk:[email protected]>com.alibaba:[email protected]
com.jdcloud.sdk:[email protected]>com.jdcloud.sdk:[email protected]>com.jdcloud.sdk:[email protected]>com.alibaba:[email protected]
另外还有22个漏洞,详细报告:https://mofeisec.com/jr?p=aae067
Dependency org.apache.httpcomponents:httpclient, leading to CVE problem
Hi, In /user,there is a dependency org.apache.httpcomponents:httpclient:4.5.3 that calls the risk method.
The scope of this CVE affected version is [,4.5.13)
After further analysis, in this project, the main Api called is org.apache.http.client.utils.URIUtils: extractHost(java.net.URI)Lorg.apache.http.HttpHost
Risk method repair link : GitHub
CVE Bug Invocation Path--
Path Length : 7
CVE Bug Invocation Path :
com.jdcloud.sdk.service.user.client.UserClient: describeUser(com.jdcloud.sdk.service.user.model.DescribeUserRequest)Lcom.jdcloud.sdk.service.user.model.DescribeUserResponse; /.m2/repository/com/alibaba/fastjson/1.2.83/fastjson-1.2.83.jar
com.jdcloud.sdk.client.JdcloudExecutor: execute(com.jdcloud.sdk.service.JdcloudRequest)Lcom.jdcloud.sdk.service.JdcloudResponse; /.m2/repository/com/alibaba/fastjson/1.2.83/fastjson-1.2.83.jar
com.google.api.client.http.HttpRequest: execute()Lcom.google.api.client.http.HttpResponse; /.m2/repository/com/alibaba/fastjson/1.2.83/fastjson-1.2.83.jar
com.google.api.client.http.apache.ApacheHttpRequest: execute()Lcom.google.api.client.http.LowLevelHttpResponse; /.m2/repository/com/alibaba/fastjson/1.2.83/fastjson-1.2.83.jar
org.apache.http.impl.client.DecompressingHttpClient: execute(org.apache.http.client.methods.HttpUriRequest)Lorg.apache.http.HttpResponse; /.m2/repository/com/alibaba/fastjson/1.2.83/fastjson-1.2.83.jar
org.apache.http.impl.client.DecompressingHttpClient: getHttpHost(org.apache.http.client.methods.HttpUriRequest)Lorg.apache.http.HttpHost; /.m2/repository/com/alibaba/fastjson/1.2.83/fastjson-1.2.83.jar
org.apache.http.client.utils.URIUtils: extractHost(java.net.URI)Lorg.apache.http.HttpHost;
Dependency tree--
INFO] com.jdcloud.sdk:user:jar:0.1.5
[INFO] \- com.jdcloud.sdk:core:jar:1.2.9:compile
[INFO] +- com.google.http-client:google-http-client:jar:1.24.1:compile
[INFO] | +- com.google.code.findbugs:jsr305:jar:3.0.2:compile
[INFO] | \- org.apache.httpcomponents:httpclient:jar:4.5.3:compile
[INFO] | +- org.apache.httpcomponents:httpcore:jar:4.4.6:compile
[INFO] | +- commons-logging:commons-logging:jar:1.2:compile
[INFO] | \- commons-codec:commons-codec:jar:1.9:compile
[INFO] +- com.google.http-client:google-http-client-gson:jar:1.24.1:compile
[INFO] | \- com.google.code.gson:gson:jar:2.1:compile
[INFO] +- joda-time:joda-time:jar:2.9.3:compile
[INFO] +- org.slf4j:slf4j-api:jar:1.7.5:compile
[INFO] \- com.alibaba:fastjson:jar:1.2.83:compile
Suggested solutions:
Update dependency version
Thank you very much.
是否有其他值可用?三种取值都试了,报错:Invalid InstanceSpec.Charge.ChargeMode
使用Java SDK经常出现 com.jdcloud.sdk.JdcloudSdkException: org.apache.http.NoHttpResponseException: rds.jdcloud-api.com:80 failed to respond
com.jdcloud.sdk.JdcloudSdkException: org.apache.http.NoHttpResponseException: rds.jdcloud-api.com:80 failed to respond
这个异常应该是长连接问题导致的吧, 服务端关闭了连接,客户端不知道,但是sdk没有提供设置连接TTL相关的入口呢
unimplemented abstract method
oss 下面的 OssClient 继承了 core 里面的抽象类 JdcloudClient, 但是没有实现里面的抽象方法getRegionId(), 这样就导致在类 JdcloudExecutor 里面的方法 execute() 执行到 jdcloudClient.getRegionId() 的时候产生异常。
生成 javadoc 并发布到一个位置,比如对象存储
PoolingHttpClientConnectionManager 连接限制
PoolingHttpClientConnectionManager
能不能吧这个连接池的MaxPerRoute和MaxTotal设置给放开
不然直接限制死了一个路由最多两个连接了
未知环境下,获取ContentLength报空指针异常
--------- beginning of crash
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: FATAL EXCEPTION: Thread-8
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: Process: com.., PID: 26042
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: java.lang.NullPointerException: Attempt to invoke virtual method 'boolean java.io.InputStream.markSupported()' on a null object reference
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at com.blackshark.sharktime.model.jdcloud.JdAWSS3V4SignerWithMp4Header.getContentLength(Unknown Source)
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at com.blackshark.sharktime.model.jdcloud.JdAWSS3V4SignerWithMp4Header.calculateContentHash(Unknown Source)
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at com.amazonaws.auth.AWS4Signer.sign(Unknown Source)
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at com.amazonaws.http.AmazonHttpClient.executeHelper(Unknown Source)
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at com.amazonaws.http.AmazonHttpClient.execute(Unknown Source)
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at com.amazonaws.services.s3.AmazonS3Client.invoke(Unknown Source)
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at com.amazonaws.services.s3.AmazonS3Client.abortMultipartUpload(Unknown Source)
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at com.amazonaws.mobileconnectors.s3.transferutility.TransferRecord$1.run(Unknown Source)
10-27 09:30:50.827 10022 26042 15316 E AndroidRuntime: at java.lang.Thread.run(Thread.java:764)
10-27 09:30:50.824 root 945 1062 I chatty : uid=0(root) /system/vendor/bin/thermal-engine identical 7 lines
warning when run mvn test -B
$ mvn test -B
[WARNING]
[WARNING] Some problems were encountered while building the effective model for com.jdcloud.sdk:pod:jar:1.0.0
[WARNING] 'build.plugins.plugin.version' for org.apache.maven.plugins:maven-compiler-plugin is missing. @ line 89, column 15
[WARNING]
[WARNING] It is highly recommended to fix these problems because they threaten the stability of your build.
[WARNING]
[WARNING] For this reason, future Maven versions might no longer support building such malformed projects.
[WARNING]
不兼容 Java 11
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.