From 996e5b013014a395fd5a98f12f7098d9b4b64e01 Mon Sep 17 00:00:00 2001
From: Raj Tekal <varadaraj_tekal@optum.com>
Date: Fri, 19 Apr 2024 15:53:50 -0400
Subject: [PATCH] chore(metadata) Addressing vulnerabilities (#10296)

---
 metadata-ingestion/docs/sources/presto/presto_recipe.yml      | 2 +-
 metadata-ingestion/docs/sources/trino/trino_recipe.yml        | 2 +-
 .../ingestion/source/powerbi_report_server/report_server.py   | 2 +-
 metadata-ingestion/src/datahub/ingestion/source/pulsar.py     | 4 ++--
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/metadata-ingestion/docs/sources/presto/presto_recipe.yml b/metadata-ingestion/docs/sources/presto/presto_recipe.yml
index 38697719e5..8afefaa760 100644
--- a/metadata-ingestion/docs/sources/presto/presto_recipe.yml
+++ b/metadata-ingestion/docs/sources/presto/presto_recipe.yml
@@ -7,7 +7,7 @@ source:
 
     # Credentials
     username: foo
-    password: datahub
+    password: password
 
 sink:
   # sink configs
\ No newline at end of file
diff --git a/metadata-ingestion/docs/sources/trino/trino_recipe.yml b/metadata-ingestion/docs/sources/trino/trino_recipe.yml
index 0615866914..378dfa766f 100644
--- a/metadata-ingestion/docs/sources/trino/trino_recipe.yml
+++ b/metadata-ingestion/docs/sources/trino/trino_recipe.yml
@@ -7,7 +7,7 @@ source:
 
     # Credentials
     username: foo
-    password: datahub
+    password: password
 
     # If you need to connect to Trino over http and not https, uncomment this section.
     # options:
diff --git a/metadata-ingestion/src/datahub/ingestion/source/powerbi_report_server/report_server.py b/metadata-ingestion/src/datahub/ingestion/source/powerbi_report_server/report_server.py
index 8036755825..b793929faa 100644
--- a/metadata-ingestion/src/datahub/ingestion/source/powerbi_report_server/report_server.py
+++ b/metadata-ingestion/src/datahub/ingestion/source/powerbi_report_server/report_server.py
@@ -157,7 +157,7 @@ class PowerBiReportServerAPI:
             response = requests.get(
                 url=url_https,
                 auth=self.get_auth_credentials,
-                verify=False,
+                verify=True,
             )
         except ConnectionError:
             LOGGER.info("Request to Report URL={}".format(url_http))
diff --git a/metadata-ingestion/src/datahub/ingestion/source/pulsar.py b/metadata-ingestion/src/datahub/ingestion/source/pulsar.py
index c400705ac2..00a49cd897 100644
--- a/metadata-ingestion/src/datahub/ingestion/source/pulsar.py
+++ b/metadata-ingestion/src/datahub/ingestion/source/pulsar.py
@@ -116,7 +116,7 @@ class PulsarSource(StatefulIngestionSourceBase):
                 f"{self.config.issuer_url}/.well-known/openid-configuration"
             )
             oid_config_response = requests.get(
-                oid_config_url, verify=False, allow_redirects=False
+                oid_config_url, verify=self.session.verify, allow_redirects=False
             )
 
             if oid_config_response:
@@ -163,7 +163,7 @@ class PulsarSource(StatefulIngestionSourceBase):
                 token_response = requests.post(
                     url=token_endpoint,
                     data=data,
-                    verify=False,
+                    verify=self.session.verify,
                     allow_redirects=False,
                     auth=(
                         self.config.client_id,