Upgrade to latest Tika 3.2.3 to address CVE-2025-54988

[sanket0354]

Hello,

I just wanted to ask if there are any plans to upgrade to the latest Apache tika to address https://nvd.nist.gov/vuln/detail/CVE-2025-54988

[skupr-anaconda]

tika-python takes a vulnerable version of tika https://github.com/chrismattmann/tika-python/blob/3.1.0/tika/tika.py#L169-L175, right?

[kv-chiu]

tika-python takes a vulnerable version of tika 3.1.0/tika/tika.py#L169-L175, right?

If an existing tika service is not detected, the library will attempt to download the specified version 3.10 of tika.

If an existing tika service is detected, there will be no impact, the library will use it.

[chrismattmann]

thanks, @sanket0354 and @skupr-anaconda do you want to provide a PR to perform the version update? I'll review and merge.