NepalPay v1.2.1 Fixes File Descriptor Leak and Consolidates Duplicate Bug Across Six Files
Developer Saurav released NepalPay v1.2.1 after discovering a file descriptor leak in the library's ConnectIPS certificate-loading code, where an unclosed FileInputStream caused a 'Too many open files' error on Kubernetes during rolling deployments. The same buggy implementation was found duplicated across six separate auto-configuration files, prompting a broader architectural fix rather than a simple patch. A new utility class, PfxLoader, was introduced in the dependency-free nepal-pay-core module to centralize certificate loading, replacing all six redundant implementations with a single delegation call. The release also resolves a long-standing issue where ConnectIPS lacked a configurable HTTP timeout, unlike other supported gateways; its default remains 30 seconds due to the additional network hops through Nepal Clearing House Ltd., but developers can now override it via configuration. Both fixes highlight how a minor bug can expose deeper maintainability problems when logic is scattered across multiple files without abstraction.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.
Discussion (0)
Log in to join the discussion and vote.
Log in