@Ging I don't think there is much in the liquibase extension that could impose security risks. But, it's better to check with Liquibase. About Hive and Impala JDBC drivers, you could download the latest from Cloudera website, and not 2.6.4/2.6.2 as mentioned in the Liquibase blog. Very soon we are going to release newer versions that address the recent log4j vulnerabilities.  ... View more

@HareshAmin As you correctly said, Impala does not support the mentioned OpenCSVSerde serde. So, you could recreate the table using CTAS, with a storage format that is supported by both Hive and Impala.   CREATE TABLE new_table STORED AS PARQUET AS SELECT * FROM aggregate_test;   ... View more

@Shab Set client socket timeout to 300( 5 mins).  The value for "hive.metastore.event.listeners" needs to be set to blank(no value).   ... View more

@Shab no, those warn messages are not related. Did you try setting 'hive.metastore.client.socket.timeout' value to, 5 mins, under the "Service Monitor Client Config Overrides" in Hive configuration?   We can completely disable Hive metastore canary, but I won't advise that. if Hive is working as expected, we could safely ignore these canary warnings, however, try setting the  aforementioned socket timeout parameter, and that could help the canary tests perform without fail.   If you use Sentry in your cluster, sometimes it blocks HMS, which in turn affects Metastore Canary. You could add the following property to overcome that.   Navigate to Cloudera Manager > Hive > Configuration > "Hive Metastore Server Advanced Configuration Snippet (Safety Valve) for hive-site.xml" > add the following: <property> <name>hive.metastore.event.listeners</name> <description>This will stop HMS blocking by Sentry</description> <value></value> </property>   ... View more