[Snyk] Security upgrade org.apache.ranger:ranger-plugins-common from 0.6.0 to 2.5.0

[kongyew]

Snyk has created this PR to fix 5 vulnerabilities in the maven dependencies of this project.

Snyk changed the following file(s):

• ranger-plugin/pom.xml

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score	Upgrade
	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JAVA-ORGAPACHEHADOOP-2443177	704	org.apache.ranger:ranger-plugins-common: 0.6.0 -> 2.5.0 Major version upgrade No Known Exploit
	Arbitrary Code Execution SNYK-JAVA-ORGAPACHEHADOOP-2975400	704	org.apache.ranger:ranger-plugins-common: 0.6.0 -> 2.5.0 Major version upgrade No Known Exploit
	Improper Input Validation SNYK-JAVA-ORGCODEHAUSJACKSON-3326362	704	org.apache.ranger:ranger-plugins-common: 0.6.0 -> 2.5.0 Major version upgrade No Known Exploit
	XML External Entity (XXE) Injection SNYK-JAVA-ORGCODEHAUSJACKSON-534878	589	org.apache.ranger:ranger-plugins-common: 0.6.0 -> 2.5.0 Major version upgrade No Known Exploit
	Improper Input Validation SNYK-JAVA-ORGAPACHEHTTPCOMPONENTS-1048058	479	org.apache.ranger:ranger-plugins-common: 0.6.0 -> 2.5.0 Major version upgrade No Known Exploit

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Arbitrary Code Execution
🦉 Improper Input Validation
🦉 Improper Input Validation
🦉 More lessons are available in Snyk Learn