Hello.
Le jeu. 29 déc. 2022 à 19:22, A Mohamed Sarjoon
<[email protected]> a écrit :
>
> Hi Team,
>
> I am Sarjoon from Ericsson India Global Private Limited, we are using commons
> collections in our product. As per our company's policy, it is advised to use
> an active open source library mainly for the reason that security
> vulnerabilities, if any reported, will be addressed at the earliest.
This is what happens at the ASF, in general: Non-active projects
are retired and vulnerabilities are addressed.
>
> The lastest release of apache commons collections4 is on July 2019, Could you
> please share the roadmap/future plans for commons collections4 releases?
As the project's contributors are all volunteers, there is no strict roadmap.
A release happens when someone deems it necessary, and puts in the
necessary work to make it happen.
> Also how any security vulnerabilities on the apache commons4 will be
> addressed?
There is no such thing as "commons4"; the "Commons" project provides
several components. They are listed at
https://commons.apache.org/
Security information is here:
https://commons.apache.org/security.html
>
> Any details on the release plans will be of much help to us. Kindly help us
> by providing those details. Thanks in advance.
Wouldn't it be helpful if you'd provide a detailed list of requirements
for a programming project to be tagged as an "active open source
library"?
Regards,
Gilles
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
