[ANN] Apache Tomcat 8.5.30 available
The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.5.30. Tomcat 8.x users should be using 8.5.x releases in preference to 8.0.x releases. Apache Tomcat 8 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and Java Authentication Service Provider Interface for Containers technologies. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from the 9.0.x branch. The notable changes since 8.5.29 include: - Add support for the maxDays attribute to the AccessLogValve and ExtendedAccessLogValve. This allows the maximum number of days for which rotated access logs should be retained before deletion to be defined. - Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager. - Correct two protocol errors with HTTP/2 PUSH_PROMISE frames. - The OpenSSL engine SSL session will now ignore invalid accesses. Please refer to the change log for the complete list of changes: http://tomcat.apache.org/tomcat-8.5-doc/changelog.html Downloads: http://tomcat.apache.org/download-80.cgi Migration guides from Apache Tomcat 7.x and 8.0.x: http://tomcat.apache.org/migration.html Enjoy! - The Apache Tomcat team
[ANNOUNCE] Apache Jackrabbit 2.17.2 released
The Apache Jackrabbit community is pleased to announce the release of Apache Jackrabbit 2.17.2. The release is available for download at: http://jackrabbit.apache.org/downloads.html See the full release notes below for details about this release: Release Notes -- Apache Jackrabbit -- Version 2.17.2 Introduction This is Apache Jackrabbit(TM) 2.17.2, a fully compliant implementation of the Content Repository for Java(TM) Technology API, version 2.0 (JCR 2.0) as specified in the Java Specification Request 283 (JSR 283). Apache Jackrabbit 2.17.2 is an unstable release cut directly from Jackrabbit trunk, with a focus on new features and other improvements. For production use we recommend the latest stable 2.16.x release. Changes in Jackrabbit 2.17.2 Improvement [JCR-4253] - RepositoryConfig: add some handling for mkdir failure Task [JCR-4246] - java.security.acl deprecated in Java 10, marked for removal in Java 11 [JCR-4254] - Update Logback version to >= 1.2.0, SLF4J accordingly [JCR-4261] - webapp: align jsons-simple dependencies internally and with oak [JCR-4262] - jcr-server: align org.apache.felix.scr.annotations with oak [JCR-4263] - jcr-server, jackrabbit-bundle: align org.osgi dependencies with oak [JCR-4264] - jackrabbit-standalone: align commons-cli dependency with oak [JCR-4266] - Update servlet-api to 2.5 [JCR-4271] - Remove redundant JavaDoc link to Java 7 API [JCR-4272] - Upgrade surefire and failsafe plugins to 2.21.0 [JCR-4273] - Mention SHA512 checksums in release notes [JCR-4274] - stop advertising MD5 checksums [JCR-4275] - Incorrect link to KEYS in release notes [JCR-4277] - stop creating MD5 checksums for releases Sub-task [JCR-4258] - Remove SimpleJBossAccessManager in preparation of upcoming acl changes [JCR-4280] - code coverage checks fail on Java 10 In addition to the above-mentioned changes, this release contains all the changes included up to the Apache Jackrabbit 2.16.x release. For more detailed information about all the changes in this and other Jackrabbit releases, please see the Jackrabbit issue tracker at https://issues.apache.org/jira/browse/JCR Release Contents This release consists of a single source archive packaged as a zip file. The archive can be unpacked with the jar tool from your JDK installation. See the README.txt file for instructions on how to build this release. The source archive is accompanied by SHA1 and SHA512 checksums and a PGP signature that you can use to verify the authenticity of your download. The public key used for the PGP signature can be found at https://www.apache.org/dist/jackrabbit/KEYS. About Apache Jackrabbit --- Apache Jackrabbit is a fully conforming implementation of the Content Repository for Java Technology API (JCR). A content repository is a hierarchical content store with support for structured and unstructured content, full text search, versioning, transactions, observation, and more. For more information, visit http://jackrabbit.apache.org/ About The Apache Software Foundation Established in 1999, The Apache Software Foundation provides organizational, legal, and financial support for more than 140 freely-available, collaboratively-developed Open Source projects. The pragmatic Apache License enables individual and commercial users to easily deploy Apache software; the Foundation's intellectual property framework limits the legal exposure of its 3,800+ contributors. For more information, visit http://www.apache.org/ Trademarks -- Apache Jackrabbit, Jackrabbit, Apache, the Apache feather logo, and the Apache Jackrabbit project logo are trademarks of The Apache Software Foundation.
[ANN] Apache Tomcat 9.0.7 available
The Apache Tomcat team announces the immediate availability of Apache Tomcat 9.0.7. Apache Tomcat 9 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and JASPIC technologies. Apache Tomcat 9.0.7 is a bugfix and feature release. The notable changes compared to 9.0.6 include: - Add support for the maxDays attribute to the AccessLogValve and ExtendedAccessLogValve. This allows the maximum number of days for which rotated access logs should be retained before deletion to be defined. - Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager. - Correct two protocol errors with HTTP/2 PUSH_PROMISE frames. - The OpenSSL engine SSL session will now ignore invalid accesses. Please refer to the change log for the complete list of changes: http://tomcat.apache.org/tomcat-9.0-doc/changelog.html Downloads: http://tomcat.apache.org/download-90.cgi Migration guides from Apache Tomcat 7.x and 8.x: http://tomcat.apache.org/migration.html Enjoy! - The Apache Tomcat team
[ANNOUNCE] Apache Subversion 1.10.0-rc2 released
I'm happy to announce the release of Apache Subversion 1.10.0-rc2. Please choose the mirror closest to you by visiting: https://subversion.apache.org/download.cgi#pre-releases The SHA1 checksums are: 8d79006f0ae53536d7c1d28bbf86f677042f3e9b subversion-1.10.0-rc2.tar.bz2 44d224ad63f3bdef33bb1dbca67609b2d936cf58 subversion-1.10.0-rc2.tar.gz f984d499cb5f522fd2c796d15ccbdb21cd83ba8c subversion-1.10.0-rc2.zip SHA-512 checksums are available at: https://www.apache.org/dist/subversion/subversion-1.10.0-rc2.tar.bz2.sha512 https://www.apache.org/dist/subversion/subversion-1.10.0-rc2.tar.gz.sha512 https://www.apache.org/dist/subversion/subversion-1.10.0-rc2.zip.sha512 PGP Signatures are available at: https://www.apache.org/dist/subversion/subversion-1.10.0-rc2.tar.bz2.asc https://www.apache.org/dist/subversion/subversion-1.10.0-rc2.tar.gz.asc https://www.apache.org/dist/subversion/subversion-1.10.0-rc2.zip.asc For this release, the following people have provided PGP signatures: Julian Foad [4096R/1FB064B84EECC493] with fingerprint: 6011 63CF 9D49 9FD7 18CF 582D 1FB0 64B8 4EEC C493 Philip Martin [2048R/76D788E1ED1A599C] with fingerprint: A844 790F B574 3606 EE95 9207 76D7 88E1 ED1A 599C Stefan Sperling [2048R/4F7DBAA99A59B973] with fingerprint: 8BC4 DAE0 C5A4 D65F 4044 0107 4F7D BAA9 9A59 B973 Stefan Fuhrmann [4096R/99EC741B57921ACC] with fingerprint: 056F 8016 D9B8 7B1B DE41 7467 99EC 741B 5792 1ACC Stefan Hett (CODE SIGNING KEY) [4096R/376A3CFD110B1C95] with fingerprint: 7B8C A7F6 451A D89C 8ADC 077B 376A 3CFD 110B 1C95 Branko Čibej [4096R/1BCA6586A347943F] with fingerprint: BA3C 15B1 337C F0FB 222B D41A 1BCA 6586 A347 943F Johan Corveleyn [4096R/B59CE6D6010C8AAD] with fingerprint: 8AA2 C10E EAAD 44F9 6972 7AEA B59C E6D6 010C 8AAD This is a pre-release for what will eventually become version 1.10.0 of the Apache Subversion open source version control system. It may contain known issues, a complete list of 1.10.0-blocking issues can be found here: https://issues.apache.org/jira/issues/?jql=project%20%3D%20SVN%20AND%20resolution%20%3D%20Unresolved%20AND%20fixVersion%20%3D%201.10.0%20ORDER%20BY%20priority%20DESC%2C%20updated%20DESC A pre-release means the Subversion developers feel that this release is ready for widespread testing by the community. There are known issues (and unknown ones!), so please use it at your own risk, though we do encourage people to test this release thoroughly. Of particular note, please remember that persistent data, such as the working copy or repository formats may change before the final release, and there may not be an upgrade path from the pre-releases to the final. As a note to operating system distro packagers: while we wish to have this release candidate widely tested, we do not feel that it is ready for packaging and providing to end-users through a distro package system. Packaging a release candidate poses many problems, the biggest being that our policy lets us break compatibility between the release candidate and the final release, if we find something serious enough. Having many users depending on a release candidate through their distro would cause no end of pain and frustration that we do not want to have to deal with. However, if your distro has a branch that is clearly labeled as containing experimental and often broken software, and explicitly destined to consenting developers and integrators only, then we're okay with packaging the release candidate there. Just don't let it near the end users please. Release notes for the 1.10.x release series may be found at: https://subversion.apache.org/docs/release-notes/1.10.html You can find the list of changes between 1.10.0-rc2 and earlier versions at: https://svn.apache.org/repos/asf/subversion/tags/1.10.0-rc2/CHANGES Questions, comments, and bug reports to us...@subversion.apache.org. Thanks, - The Subversion Team
[ANNOUNCE] Apache Groovy 2.5.0-rc-1 released
Dear community, The Apache Groovy team is pleased to announce version 2.5.0-rc-1 of Apache Groovy. Apache Groovy is a multi-faceted programming language for the JVM. Further details can be found at the http://groovy.apache.org website. This is a pre-release of a new version of Groovy. We greatly appreciate any feedback you can give us when using this version. This release includes 18 bug fixes/improvements as outlined in the changelog: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12318123=12342817 Sources, convenience binaries, downloadable documentation and an SDK bundle can be found at: http://www.groovy-lang.org/download.html We recommend you verify your installation using the information on that page. Jars are also available within the major binary repositories. We welcome your help and feedback and in particular want to thank everyone who contributed to this release. For more information on how to report problems, and to get involved, visit the project website at https://groovy.apache.org/ Best regards, The Apache Groovy team.