This is a vote to release Apache Santuario XML Security for Java 4.0.1. It contains a bug fix https://issues.apache.org/jira/browse/SANTUARIO-609 "Remove call to Signature.getProvider() in debug log"
Artifacts: https://repository.apache.org/content/repositories/orgapachesantuario-1046/ Git tag: https://github.com/apache/santuario-xml-security-java/releases/tag/xmlsec-4.0.1 +1 from me. Colm.