apache-airflow-providers-ftp@3.6.0rc1 vulnerabilities

Provider package apache-airflow-providers-ftp for Apache Airflow

Direct Vulnerabilities

Known vulnerabilities in the apache-airflow-providers-ftp package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Improper Certificate Validation

apache-airflow-providers-ftp is a Provider package apache-airflow-providers-ftp for Apache Airflow

Affected versions of this package are vulnerable to Improper Certificate Validation for FTP_TLS connections, which are created without setting the proper context using ssl.create_default_context().

How to fix Improper Certificate Validation?

Upgrade apache-airflow-providers-ftp to version 3.8.0rc2 or higher.

[,3.8.0rc2)