[
https://issues.apache.org/jira/browse/XALANJ-2644?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17744911#comment-17744911
]
Jeff Thomas commented on XALANJ-2644:
-------------------------------------
Hi Xalan Team,
Xalan 2.7.3 is currently on the Maven Repository, but I noticed the POM does
not include any dependencies for xercesImpl and xml-apis as with 2.7.2 - is
this an oversight? :)
{noformat}
<project xmlns="http://maven.apache.org/POM/4.0.0"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0
https://maven.apache.org/xsd/maven-4.0.0.xsd";>
<modelVersion>4.0.0</modelVersion>
<groupId>xalan</groupId>
<artifactId>xalan</artifactId>
<version>2.7.3</version>
</project>{noformat}
It looks like the JAR got published with a default POM?
Cheers, Jeff
> Publish xalan 2.7.3 to Maven central repository
> -----------------------------------------------
>
> Key: XALANJ-2644
> URL: https://issues.apache.org/jira/browse/XALANJ-2644
> Project: XalanJ2
> Issue Type: Improvement
> Security Level: No security risk; visible to anyone(Ordinary problems in
> Xalan projects. Anybody can view the issue.)
> Components: Xalan
> Affects Versions: 2.7.3
> Reporter: Vladimir Sitnikov
> Assignee: Steven J. Hathaway
> Priority: Blocker
> Labels: maven
>
> Please see XALANJ-2417 and do as was asked there for the current release.
> IMHO this would greatly quicken the distribution of this security fix.
> In this context please also consider XALANJ-2578 - that'd make life easier
> for a lot of developers that depend on xalan.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
