From f12815ce648cfcfdd3721f4cd54a12e56ecdb4b2 Mon Sep 17 00:00:00 2001
From: Dilli Babu Godari <godari728@gmail.com>
Date: Sat, 16 May 2026 17:08:25 +0530
Subject: [PATCH] chore(deps): Upgrade openlineage-java to 1.47.1 to fix
 CVE-2026-40542 (#27812)

## Description
- Upgraded openlineage-java from 1.44.1 to 1.47.1
- This version includes httpclient5 5.6.1 which addresses CVE-2026-40542

## Motivation and Context
Using a more recent version helps avoid potential vulnerabilities and
ensures we aren't relying on outdated or unsupported code.

## Impact
<!---Describe any public API or user-facing feature change or any
performance impact-->

## Test Plan
<!---Please fill in how you tested your change-->

## Contributor checklist

- [ ] Please make sure your submission complies with our [contributing
guide](https://github.com/prestodb/presto/blob/master/CONTRIBUTING.md),
in particular [code
style](https://github.com/prestodb/presto/blob/master/CONTRIBUTING.md#code-style)
and [commit
standards](https://github.com/prestodb/presto/blob/master/CONTRIBUTING.md#commit-standards).
- [ ] PR description addresses the issue accurately and concisely. If
the change is non-trivial, a GitHub Issue is referenced.
- [ ] Documented new properties (with its default value), SQL syntax,
functions, or other functionality.
- [ ] If release notes are required, they follow the [release notes
guidelines](https://github.com/prestodb/presto/wiki/Release-Notes-Guidelines).
- [ ] Adequate tests were added if applicable.
- [ ] CI passed.
- [ ] If adding new dependencies, verified they have an [OpenSSF
Scorecard](https://securityscorecards.dev/#the-checks) score of 5.0 or
higher (or obtained explicit TSC approval for lower scores).

## Release Notes
Please follow [release notes
guidelines](https://github.com/prestodb/presto/wiki/Release-Notes-Guidelines)
and fill in the release notes below.

```
== NO RELEASE NOTE ==
```
---
 presto-openlineage-event-listener/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/presto-openlineage-event-listener/pom.xml b/presto-openlineage-event-listener/pom.xml
index a2e8211398966..a763acc5e0313 100644
--- a/presto-openlineage-event-listener/pom.xml
+++ b/presto-openlineage-event-listener/pom.xml
@@ -24,7 +24,7 @@
         <dependency>
             <groupId>io.openlineage</groupId>
             <artifactId>openlineage-java</artifactId>
-            <version>1.44.1</version>
+            <version>1.47.1</version>
             <exclusions>
                 <exclusion>
                     <groupId>commons-logging</groupId>