Ivan,
I suppose the next 2.11.2 version should be released. Currently, from
my point of view, it's a bit strange releasing 2.11.1 with a known
CVE. It doesn't take too much time to prepare a new RC.
Folks,
I've merged to the master branch the issue [1] which upgrades
dependency to 2.17.0 and he
Max, with no doubt we should not release 2.11.1 with known CVE.
вс, 19 дек. 2021 г. в 21:24, Maxim Muzafarov :
> Ivan,
>
> I suppose the next 2.11.2 version should be released. Currently, from
> my point of view, it's a bit strange releasing 2.11.1 with a known
> CVE. It doesn't take too much tim
