Hello. Le jeu. 29 déc. 2022 à 19:22, A Mohamed Sarjoon <a.mohamed.sarj...@ericsson.com.invalid> a écrit : > > Hi Team, > > I am Sarjoon from Ericsson India Global Private Limited, we are using commons > collections in our product. As per our company's policy, it is advised to use > an active open source library mainly for the reason that security > vulnerabilities, if any reported, will be addressed at the earliest.
This is what happens at the ASF, in general: Non-active projects are retired and vulnerabilities are addressed. > > The lastest release of apache commons collections4 is on July 2019, Could you > please share the roadmap/future plans for commons collections4 releases? As the project's contributors are all volunteers, there is no strict roadmap. A release happens when someone deems it necessary, and puts in the necessary work to make it happen. > Also how any security vulnerabilities on the apache commons4 will be > addressed? There is no such thing as "commons4"; the "Commons" project provides several components. They are listed at https://commons.apache.org/ Security information is here: https://commons.apache.org/security.html > > Any details on the release plans will be of much help to us. Kindly help us > by providing those details. Thanks in advance. Wouldn't it be helpful if you'd provide a detailed list of requirements for a programming project to be tagged as an "active open source library"? Regards, Gilles --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@commons.apache.org For additional commands, e-mail: user-h...@commons.apache.org