https://github.com/apache/maven-enforcer/pull/970 looks like it should be dealt with before cut. It includes a moderate severity dependency alert.
On Fri, May 15, 2026 at 10:49 AM <[email protected]> wrote: > > Hello Maven, > > I'd like to call a vote on releasing the following artifacts as > Apache Maven Enforcer 3.6.3. This vote is being conducted using an > Alpha version of the Apache Trusted Releases (ATR) platform. > Please report any bugs or issues to the ASF Tooling team. > > The release candidate page, including downloads, can be found at: > > https://release-test.apache.org/vote/maven-enforcer/3.6.3 > > The release artifacts are signed with one or more OpenPGP keys from: > > https://release-test.apache.org/downloads/maven/KEYS > > Maven staging repository: > > https://repository.apache.org/content/repositories/maven-2430/ > > Release notes (draft): > > https://gist.github.com/cstamas/ca82734fc4dc95d3c053edc1393dc803 > > Changes since the last release: > > > https://github.com/apache/maven-enforcer/compare/enforcer-3.6.2...enforcer-3.6.3 > > Staging site: > > https://maven.apache.org/enforcer-archives/enforcer-LATEST/ > > Please review the release candidate and vote accordingly. > > [ ] +1 Release this package > [ ] +0 Abstain > [ ] -1 Do not release this package (please provide specific comments) > > You can vote on ATR at the URL above, or manually by replying to this email. > > The vote is open for 72 hours. > > > Thanks, > Tamas Cservenak (cstamas) > > This email was sent by [email protected] on the Apache Trusted Releases > platform > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > -- Elliotte Rusty Harold [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
