Skip to content

Commit

Permalink
Bump to next development version
Browse files Browse the repository at this point in the history
  • Loading branch information
Gary Gregory committed Jul 9, 2019
1 parent cab58b3 commit bf5e458
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@
</parent>
<modelVersion>4.0.0</modelVersion>
<artifactId>commons-collections4</artifactId>
<version>4.4</version>

This comment has been minimized.

Sign in to view

Copy link
@forhadmethun

forhadmethun Dec 22, 2023

@garydgregory when the 4.5 will be released, it seems that 4.4 has a vulnerability - https://mvnrepository.com/artifact/org.apache.commons/commons-collections4/4.4
And there has been no major release for the last 4 years, will be be any upcoming release?
<version>4.5-SNAPSHOT</version>
<name>Apache Commons Collections</name>

<inceptionYear>2001</inceptionYear>
Expand Down

1 comment on commit bf5e458

@garydgregory
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hello @forhadmethun

The CVE you refer to is for JUnit and is irrelevant to a production system. Help me understand why you see this as a problem.

The main hold-up feature-wise is the completion of #402

Then, we'll go through any important PRs and JIRA tickets, but at this point, TBH, I'd rather cut a release candidate after #402 and deal with other issues in a 4.5.1 or 4.6.0.

HTH

Please sign in to comment.