Author: svn-site-role Date: Thu Oct 23 13:01:46 2025 New Revision: 1929311 Log: Site checkin for project Apache Maven Site
Modified: maven/website/content/whatsnewinmaven4.html Modified: maven/website/content/whatsnewinmaven4.html ============================================================================== --- maven/website/content/whatsnewinmaven4.html Thu Oct 23 12:10:02 2025 (r1929310) +++ maven/website/content/whatsnewinmaven4.html Thu Oct 23 13:01:46 2025 (r1929311) @@ -723,7 +723,7 @@ Pay close attention to upcoming warnings Maven 3's password encryption had several serious issues and could more accurately be called “password obfuscation”. Maven 4 instead has a completely redone encryption system, based on Maven Encryption (<code>mvnenc</code>) - a standalone CLI tool. As of now, it provides functionally equivalent operations as Maven 3 (see <a href="https://maven.apache.org/guides/mini/guide-encryption.html"; class="externalLink">“Maven: Password Encryption”</a>) but adds -improvements like a <code>decrypt</code> functionality. +improvements like a <code>decrypt</code> functionality and supports external vaults. The documentation of the new encryption can be found in <a href="https://maven.apache.org/guides/mini/guide-encryption-4.html"; class="externalLink">“Password Encryption (Maven 4)”</a>. A broad overview of the problems in Maven 3 and the solution in Maven 4 can be found in the article <a href="https://cstamas.org/blog/2024/09/handling-sensitive-data-in-maven/"; class="externalLink">“Handling sensitive data in Maven”</a> by Maven maintainer Tamás Cservenák.</p></section><section><a id="Maven_Resolver"></a> <h3>Maven Resolver</h3>
