Hello,
In the release history 2.8 is marked as “minor update” and I don’t find
mentioning of the critical interpolation CVE, should we add to the table and
announcements this CVE and do we need a security section as well?
https://commons.apache.org/proper/commons-configuration/changes-report.ht
> we are volunteers, each with our own priorities and time limitations ;-)
Speaking of which...
I've had some major life changes occur recently and will not be able
to push this through. If anyone else is able to pick this up, that
would be appreciated.
Regards,
Matt J
On Thu, Jul 21, 2022 at 8
Is anyone able to make a summary of what's necessary for the release? I
read the thread and looked at the latest commits for commons-fileupload,
and from what I understand the RM would need to:
- Locate and remove any code marked as deprecated, updating the changes.xml
& release notes afterwards
-
