I'm interested in putting together a 1.10.2 release with the changes in https://github.com/apache/accumulo/pull/2458 so that the 1.10 line no longer requires log4j1, which has several vulnerabilities. Reload4j was created as a fork from log4j1 from Apache by its original author in order to provide a transition away from the CVE-riddled log4j1 jars.
I'm sure we have a couple of other small bugfixes and improvements in 1.10 that could benefit from being released as well. If there are any objections or last-minute tweaks that should be included in 1.10.2, please discuss here. Thanks, Christopher
