[this newsletter is available online at https://s.apache.org/wkssk ]
We're wrapping up another great week with the following activities from the Apache community: Success at Apache This series focuses on the people and processes behind why the ASF "just works." The most recent entry is "From Mentee to PMC" by Ephraim Anierobi. https://blogs.apache.org/foundation/entry/success-at-apache-from-mentee ASF Annual Report The ASF annual report is a look back at our many achievements during the 2021 Fiscal Year. - Press release: The Apache Software Foundation Announces Annual Report for 2021 Fiscal Year https://blogs.apache.org/foundation/entry/the-apache-software-foundation-announces78 - ASF FY2021 Annual Report (PDF) https://www.apache.org/foundation/docs/FY2021AnnualReport.pdf ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws. - Next Board Meeting: 20 October 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998. ApacheCon Asia was held online 6-8 August; ApacheCon@Home is coming up next on 21-23 September: - The Apache® Software Foundation Announces Program for ApacheCon@Home 2021 https://blogs.apache.org/foundation/entry/the-apache-software-foundation-announces77 - Learn all about ApacheCon with Rich Bowen and Swapnil M Mane https://youtu.be/m_c7NJ5yMOg - Learn about the Community Track from Sharan Foga and Swapnil M Mane https://youtu.be/8cZF-gaE3a4 - Register for ApacheCon@Home https://www.apachecon.com/acah2021/ ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock. - 7M+ weekly checks yield uptime at 99.99%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. View the Apache Infrastructure Uptime site to see the most recent averages. http://www.apache.org/uptime/ Apache Code Snapshot – Over the past week, 356 Apache Committers changed 2,986,797 lines of code over 3,104 commits. Top 5 contributors, in order, are: Alex Heneveld, Andrea Cosentino, Stephen Mallette, Andi Huber, and Claus Ibsen. Apache Project Announcements – the latest updates by category. Application Servers/Middleware -- - Apache Karaf runtime 4.3.3 released https://karaf.apache.org/ Content -- - Apache PDFBox 3.0.0-alpha2 released https://pdfbox.apache.org/ - Apache Any23 2.5 released http://any23.apache.org/ -- CVE-2021-38555: An XML external entity (XXE) injection vulnerability exists in StreamUtils.java https://lists.apache.org/thread.html/r589d1a9f94dbeee7a0f5dbe8513a0e300dfe669bd964ba2fbfe28e07%40%3Cannounce.apache.org%3E -- CVE-2021-40146: A Remote Code Execution (RCE) vulnerability exists in YAMLExtractor.java https://lists.apache.org/thread.html/r7c521ed85c7ae1bad4fdf95b459f2aaa8a67eae338636b7b7ec35d86%40%3Cannounce.apache.org%3E Cloud Computing -- - Apache jclouds 2.4.0 released https://jclouds.apache.org/ Integration -- - Apache Camel 3.11.2 (LTS) released https://camel.apache.org/ IoT -- - Apache IoTDB 0.12.2 released https://iotdb.apache.org/ Libraries -- - Apache Log4j Kotlin API 1.1.0 released https://logging.apache.org/ - Apache Commons RNG 1.4 released https://commons.apache.org/ - Apache Jena CVE-2021-39239: XML External Entity (XXE) vulnerability https://lists.apache.org/thread.html/rf44d529c54ef1d0097e813f576a0823a727e1669a9f610d3221d493d%40%3Cannounce.apache.org%3E Observability -- - Apache SkyWalking Python Agent 0.7.0 and Satellite 0.2.0 released https://skywalking.apache.org/ Search -- - Apache Solr Operator v0.4.0 released http://solr.apache.org/ Security Framework -- - Apache Shiro CVE-2021-41303: Before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass https://lists.apache.org/thread.html/r85a80d9187a1ee920780f410e902aa340d679d15733c13730662fb22%40%3Cannounce.apache.org%3E Servers -- - Apache Tomcat 8.5.71, 9.0.53, 10.0.11, and 10.1.0-M5 (alpha) released https://tomcat.apache.org/ -- CVE-2021-41079: Denial of Service https://lists.apache.org/thread.html/rccdef0349fdf4fb73a4e4403095446d7fe6264e0a58e2df5c6799434%40%3Cannounce.apache.org%3E - Apache HttpComponents Core 5.2-alpha1 released https://hc.apache.org/ Web Frameworks - - Apache Wicket 9.5.0 released https://wicket.apache.org/ Did You Know? - Did you know that NASA JPL uses Apache Kafka to enable real-time data feeds from Mars? http://kafka.apache.org/ - Did you know that ASF Infrastructure's uptime during FY2021 was 99.75%? https://apache.org/uptime/ - Did you know that Shopify uses Apache Flink to analyze 10 TB+ of data? http://flink.apache.org/ Apache Community Notices - Watch "Trillions and Trillions Served" https://www.youtube.com/watch?v=JUt2nb0mgwg, the documentary on the ASF 1) full feature [49 min] https://www.youtube.com/watch?v=JUt2nb0mgwg 2) "Apache Everywhere" [6 min] https://www.youtube.com/watch?v=nXtIti9jMFI 3) "Why Apache" [2.5 min] https://www.youtube.com/watch?v=YM5dLvNatRs 4) “Apache Innovation” [40 min] https://www.youtube.com/watch?v=qkvqJaX4S50 - The Apache Month in Review: August 2021 https://blogs.apache.org/foundation/entry/apache-month-in-review-august1 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI - Foundation Reports and Statements http://www.apache.org/foundation/reports.html - Presentations from ApacheCon Asia are available on YouTube https://www.youtube.com/c/TheApacheFoundation/playlists?app=desktop&view=50&sort=dd&shelf_id=2 - "Success at Apache" focuses on the people and processes behind why the ASF "just works." - Inside Infra: the new interview series with members of the ASF infrastructure team --meet Chris Thistlethwaite https://s.apache.org/InsideInfra-Chris Drew Foulks https://s.apache.org/InsideInfra-Drew Greg Stein Part I https://s.apache.org/InsideInfra-Greg ...Part II https://s.apache.org/InsideInfra-Greg2 and Part III https://s.apache.org/InsideInfra-Greg3 Daniel Gruno Part I https://s.apache.org/InsideInfra-Daniel1 and Part II https://s.apache.org/InsideInfra-Daniel2 Gavin McDonald Part I https://s.apache.org/InsideInfra-Gavin and Part II https://s.apache.org/InsideInfra-Gavin2 Andrew Wetmore Part I https://s.apache.org/InsideInfra-Andrew and Part II https://s.apache.org/InsideInfra-Andrew2 Chris Lambertus Part I https://s.apache.org/InsideInfra-ChrisL and Part II https://s.apache.org/InsideInfra-ChrisL2 - Follow the ASF on social media: @TheASF on Twitter and The ASF page on LinkedIn https://www.linkedin.com/company/the-apache-software-foundation - Follow the Apache Community on Facebook https://www.facebook.com/ApacheSoftwareFoundation/ and Twitter https://twitter.com/ApacheCommunity . - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby. Stay updated about The ASF For real-time updates, sign up for Apache-related news by sending mail to announce-subscr...@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers. = = = NOTE: you are receiving this message because you are subscribed to the announce@apache.org distribution list. To unsubscribe, send email from the recipient account to announce-unsubscr...@apache.org with the word "Unsubscribe" in the subject line.