lhotari commented on issue #23083:
URL: https://github.com/apache/pulsar/issues/23083#issuecomment-2255069534
I'm about to start the release process for Apache Pulsar 3.3.1, so all
already fixed issues will be addressed with this release.
A lot of security vulnerability scanner alerts are false positives or don't
apply to Apache Pulsar. It would be useful to mention what scanner you are
using and what your requirements are ("Several Major issues were reported."
isn't addressable).
Apache Pulsar is maintained by volunteers. Active contributions to Apache
Pulsar are more than welcome for this type of issues. Releases are typically
made every 1-2 months [for actively supported
versions](https://pulsar.apache.org/contribute/release-policy/#supported-versions).
If you need quicker response to security vulnerabilities, I'd recommend
subscribing to a commercial distribution of Apache Pulsar (I work for
StreamNative which offers such services).
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscr...@pulsar.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
