Knox 1.6.1 was released in January of this year.
With the major (backward-incompatible) Log4j upgrade (KNOX-1462 <https://issues.apache.org/jira/browse/KNOX-1462>), and numerous resolved/closed issues <https://issues.apache.org/jira/browse/KNOX-2831?filter=-1&jql=project%20%3D%20KNOX%20AND%20status%20in%20(Resolved%2C%20Closed)%20AND%20fixVersion%20%3D%202.0.0%20order%20by%20updated%20DESC> since, it seems an appropriate time to plan for a 2.0.0 release. I propose that we also address the Knox Token service impersonation ( KNOX-2714 <https://issues.apache.org/jira/browse/KNOX-2714>) and recently added DoS provider (KNOX-2806 <https://issues.apache.org/jira/browse/KNOX-2806>) implementations as part of this release. What do you think? Perhaps, it could be a "Knoxgiving" release? Thanks, Phil
