Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(sec): set default maximum batching size to 500 to prevent Denial-of-Service #364

Open
wants to merge 2 commits into
base: main
Choose a base branch
from

Conversation

hainenber
Copy link

@hainenber hainenber commented Oct 29, 2024

A light attempt to resolve SNYK-JS-DATALOADER-8248488 by setting up a default maxBatchSize to be 500.

The limit is chosen arbitrarily along with inspiration from Elastic's Beats equivalent

Copy link

linux-foundation-easycla bot commented Oct 29, 2024

CLA Signed

The committers listed above are authorized under a signed CLA.

@hainenber hainenber changed the title fix(sec): set default maximum batching size to 1000 to prevent Denial-of-Service fix(sec): set default maximum batching size to 500 to prevent Denial-of-Service Oct 30, 2024
Copy link
Member

@saihaj saihaj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would consider this as a breaking change. We are changing a default limit and potentially for someone it can start breaking the CI if they don't adjust this limit.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants