Re: [VOTE] Release Apache Log4j Kotlin API 1.4.0

2023-12-22 Thread Volkan Yazıcı 
+1

sigs ✔️
hashes ✔️
reproducibility ✔️
site ✔️
release notes 🙃

The changelog entry for the fix should be of type `fixed` instead of
`changed`. Not a show stopper, but I would appreciate it if you can fix
this while merging `rel/1.4.0` tag to `main`.


On Wed, Dec 20, 2023 at 7:08 PM Matt Sicker  wrote:

> This is a vote to release the Apache Log4j Kotlin API 1.4.0.
>
> Website: https://logging.staged.apache.org/log4j/kotlin
> GitHub: https://github.com/apache/logging-log4j-kotlin
> Commit: ee2d4a8efa16bb2223252329531c94e98ed6d1e6
> Distribution: https://dist.apache.org/repos/dist/dev/logging/log4j-kotlin
> Nexus:
> https://repository.apache.org/content/repositories/orgapachelogging-1113
> Signing key: 0x077e8893a6dcc33dd4a4d5b256e73ba9a0b592d0
>
> Please download, test, and cast your votes on this mailing list.
>
> [ ] +1, release the artifacts
> [ ] -1, don't release, because...
>
> This vote is open for 72 hours and will pass unless getting a
> net negative vote count. All votes are welcome and we encourage
> everyone to test the release, but only the Logging Services PMC
> votes are officially counted. At least 3 +1 votes and more
> positive than negative votes are required.
>
> === Review kit
>
> The minimum set of steps needed to review the uploaded distribution
> files in the Subversion repository can be summarized as follows:
>
> # Check out the distribution
> svn co https://dist.apache.org/repos/... && cd $_
>
> # Verify checksums
> shasum --check *.sha512
>
> # Verify signatures
> wget -O - https://downloads.apache.org/logging/KEYS | gpg --import
> for sigFile in *.asc; do gpg --verify $sigFile; done
>
> # Verify reproduciblity
> umask 0022
> unzip *-src.zip -d src
> cd src
> export NEXUS_REPO=https://repository.apache.org/content/...
> sh mvnw -Prelease verify artifact:compare -Dreference.repo=$NEXUS_REPO
>
> === Release notes
>
>
> This minor release fixes incorrect coroutine context map and stack.
>
>
>  Added
>
> * Started generating CycloneDX SBOM with the recent update of
> `logging-parent` to version `10.2.0`
>
>  Changed
>
> * Coroutine context is not cleared properly, only appended to (#54)
> * Update `org.apache.logging:logging-parent` to version `10.2.0`
> * Update `org.apache.logging.log4j:log4j-bom` to version `2.22.0` (#52)
> * Update `org.apache.logging:logging-parent` to version `10.4.0` (#53)
> * Update `org.codehaus.mojo:build-helper-maven-plugin` to version `3.5.0`
> (#51)
> * Update `org.codehaus.mojo:exec-maven-plugin` to version `3.1.1` (#50)
> * Update `org.junit:junit-bom` to version `5.10.1` (#49)

Re: [VOTE] Release Apache Log4j Kotlin API 1.4.0

2023-12-22 Thread Piotr P. Karwasz 
Hi Matt,

On Wed, 20 Dec 2023 at 19:08, Matt Sicker  wrote:
> Please download, test, and cast your votes on this mailing list.
>
> [ ] +1, release the artifacts
> [ ] -1, don't release, because...

hashes: OK,
signatures: OK,
build with tests: OK,
reproducibility: OK,
binary distribution: OK,
website: OK.

+1, release the artifacts.

Piotr

Meet our keynote speakers and register to Community Over Code EU!

2023-12-22 Thread Ryan Skraba 
[Note: You're receiving this email because you are subscribed to one or
more project dev@ mailing lists at the Apache Software Foundation.]











*
Merge
with the ASF EUniverse!The registration for Community Over Code Europe is
finally open! Get your tickets now and save your spot!
We are happy to announce that we
have confirmed the first featured speakers
!  - Asim Hussain, Executive
Director at Green Software Foundation- Dirk-Willem Van Gulik, VP of Public
Policy at The Apache Software Foundation- Ruth Ikega, Community Lead at
CHAOSS Africa Visit our website
 to learn more about this
amazing lineup.CFP is openWe are looking forward to hearing all you have to
share with the Apache Community. Please submit your talk proposal
 before January 12, 2024.Interested in
boosting your brand?Take a look at our prospectus

and find out the opportunities we have for you. Be one step ahead and book
your room at the hotel venueWe have a special rate for you at the Radisson
Blu Carlton, the hotel that will hold Community Over Code EU. Learn more
about the location and venue 
and book your accommodation. Should you have any questions, please do not
hesitate to contact us. We wish you Happy Holidays in the company of your
loved ones! See you in Bratislava next year!Community Over Code EU
Organizer Committee*

[VOTE] Release Apache Log4j 2.22.1 RC1

2023-12-22 Thread Piotr P. Karwasz 
This is a vote to release the Apache Log4j 2.22.1.

Website: https://logging.staged.apache.org/log4j/2.x/
GitHub: https://github.com/apache/logging-log4j2
Commit: 8469975a4f2b1f8f1bd4f25ca6d1989a52aefc1b
Distribution: https://dist.apache.org/repos/dist/dev/logging/log4j
Nexus: https://repository.apache.org/content/repositories/orgapachelogging-1254
Signing key: 0x077e8893a6dcc33dd4a4d5b256e73ba9a0b592d0

Please download, test, and cast your votes on this mailing list.

[ ] +1, release the artifacts
[ ] -1, don't release, because...

This vote is open for 72 hours and will pass unless getting a
net negative vote count. All votes are welcome and we encourage
everyone to test the release, but only the Logging Services PMC
votes are officially counted.

== Review Kit

The minimum set of steps needed to review the uploaded distribution
files in the Subversion repository can be summarized as follows:

# Check out the distribution
wget --recursive --no-parent --no-host-directories --cut-dirs=5
https://dist.apache.org/repos/dist/dev/logging/log4j

# Verify checksums
sha512sum --check *.sha512

# Verify signatures
wget -O - https://downloads.apache.org/logging/KEYS | gpg --import
for sigFile in *.asc; do gpg --verify $sigFile; done

# Verify reproduciblity
umask 0022
unzip *-src.zip -d src
cd src
export 
NEXUS_REPO=https://repository.apache.org/content/repositories/orgapachelogging-1254
sh mvnw -Prelease verify artifact:compare -Dreference.repo=$NEXUS_REPO

== Release Notes

This release contains only dependency upgrades and bug fixes, which do
not change the behavior of the artifacts.

While maintaining compatibility with Java 8, the artifacts in this
release where generated using JDK 17, unlike version `2.22.0` that
used JDK 11.


[#release-notes-2-22-1-fixed]
=== Fixed

* Mark `JdkMapAdapterStringMap` as frozen if map is immutable. (#2098)
* Fix NPE in `CloseableThreadContext`. (#1426)
* Use the module name of Conversant Media Disruptor from version
`1.2.16+` of the library.
* Fix NPE in `RollingFileManager`. (#1645)
* Fix `log4j-to-slf4j` JPMS and OSGi descriptors. (#1983)
* Workaround a Coursier/Ivy dependency resolution bug affecting
`log4j-slf4j-impl` and `log4j-mongodb3`. (#2065)

[#release-notes-2-22-1-updated]
=== Updated

* Bumped the minimum Java version required for the build to Java 17.
Runtime requirements remain unchanged. (#2021)
* Update `com.github.luben:zstd-jni` to version `1.5.5-11` (#2030)
* Update `com.google.guava:guava` to version `33.0.0-jre` (#2110)
* Update `commons-codec:commons-codec` to version `1.16.0` (#2042)
* Update `commons-io:commons-io` to version `2.15.1` (#2034)
* Update `commons-logging:commons-logging` to version `1.3.0` (#2050)
* Update `io.netty:netty-bom` to version `4.1.104.Final` (#2095)
* Update `org.apache.commons:commons-compress` to version `1.25.0` (#2045)
* Update `org.apache.commons:commons-dbcp2` to version `2.11.0` (#2048)
* Update `org.apache.commons:commons-lang3` to version `3.14.0` (#2047)
* Update `org.apache.commons:commons-pool2` to version `2.12.0` (#2057)
* Update `org.apache.kafka:kafka-clients` to version `3.6.1` (#2068)
* Update `org.apache.logging:logging-parent` to version `10.5.0` (#2119)
* Update `org.jctools:jctools-core` to version `4.0.2` (#1984)
* Update `org.springframework.boot:spring-boot` to version `2.7.18` (#1998)
* Update `org.springframework.cloud:spring-cloud-dependencies` to
version `2021.0.9` (#2109)

Re: [VOTE] Release Apache Log4j 3.0.0-beta1 (RC2)

2023-12-22 Thread Volkan Yazıcı 
Adding my +1.

With that, the release passes with 4 binding +1 votes from Piotr,
Ralph, Matt, and me. I will continue the release process.


On Thu, Dec 21, 2023 at 11:52 PM Matt Sicker  wrote:
>
> +1
>
> I’ll note that the reproducibility check fails on log4j-bom this time, but 
> not a blocker.
>
> > On Dec 19, 2023, at 3:00 PM, Volkan Yazıcı  wrote:
> >
> > This is a vote to release the Apache Log4j 3.0.0-beta1 RC2.
> >
> > Website: https://logging.staged.apache.org/log4j/3.x
> > GitHub: https://github.com/apache/logging-log4j2
> > Commit: 416cd4dcf419b59c88054d2001d34c7fec010560
> > Distribution: https://dist.apache.org/repos/dist/dev/logging/log4j
> > Nexus: 
> > https://repository.apache.org/content/repositories/orgapachelogging-1252
> > Signing key: 0x077e8893a6dcc33dd4a4d5b256e73ba9a0b592d0
> >
> > Please download, test, and cast your votes on this mailing list.
> >
> > [ ] +1, release the artifacts
> > [ ] -1, don't release, because...
> >
> > This vote is open for 72 hours and will pass unless getting a
> > net negative vote count. All votes are welcome and we encourage
> > everyone to test the release, but only the Logging Services PMC
> > votes are officially counted.
> >
> > PLEASE USE THIS THREAD ONLY FOR VOTING +1 OR -1. IF YOU HAVE THOUGHTS,
> > CONCERNS, QUESTIONS, ETC. SHARE THEM ELSEWHERE. THIS IS A BETA
> > RELEASE. WE INTEND TO HAVE SEVERAL OTHER BETA RELEASES. THIS IS NOT
> > THE CONCLUSIVE `3.0.0` RELEASE.
> >
> > == Review Kit
> >
> > The minimum set of steps needed to review the uploaded distribution
> > files in the Subversion repository can be summarized as follows:
> >
> ># Check out the distribution
> >svn co https://dist.apache.org/repos/... && cd $_
> >
> ># Verify checksums
> >shasum --check *.sha512
> >
> ># Verify signatures
> >wget -O - https://downloads.apache.org/logging/KEYS | gpg --import
> >for sigFile in *.asc; do gpg --verify $sigFile; done
> >
> ># Verify reproduciblity
> >umask 0022
> >unzip *-src.zip -d src
> >cd src
> >export NEXUS_REPO=https://repository.apache.org/content/...
> >sh mvnw -Prelease verify artifact:compare -Dreference.repo=$NEXUS_REPO
> >
> > == Release Notes
> >
> > This is the first beta release of the upcoming major release, i.e., `3.0.0`.
> >
> > === Added
> >
> > * Add annotations for nullability. (LOG4J2-1477)
> > * Remove deprecated code. (LOG4J2-2493)
> > * Add a more generalized dependency injection system to plugins
> > inspired by JSR 330. (LOG4J2-2803)
> > * Add and enhance structured properties for per-context settings
> > outside configuration files. (LOG4J2-3299[LOG4J2-3299], #1473)
> > * Automate artifact publishing and release preparation. (LOG4J2-3466)
> > * Add support for dependency injection of plugins into container types
> > such as `Optional`, `Collection`, `Set`, `Stream`,
> > `List`, and `Map`. (LOG4J2-3496)
> > * Add support for `ConstraintValidator` in plugin classes. (LOG4J2-3497)
> >
> > === Changed
> >
> > * Remove liquibase-log4j2 maven module (#1193)
> > * Make the output of annotation processing reproducible. (#1520)
> > * Replace `synchronized` blocks with locks for improved performance
> > with virtual threads. (#1532)
> > * Removes additional `isFiltered` checks in `AsyncLoggerConfig`. (#1550)
> > * Ignore exceptions thrown by PropertySources. Eliminate
> > ClassCastException when SimpleLoggerContext is used.
> > (spring-projects/spring-boot#33450, #1799)
> > * Update `com.lmax:disruptor` to version `4.0.0` (#1829)
> > * Migrate most tests to JUnit 5. This includes a more powerful set of
> > test extensions. (LOG4J2-2653)
> > * Make Log4j use its own BOM. (LOG4J2-3511)
> > * Change encoding of HTTP Basic Authentication to UTF-8. (#1970)
> > * Upgraded the required compiler version to Java 17
> > * Upgraded the required runtime version to Java 17
> > * Update `actions/checkout` to version `4.1.1` (#1869)
> > * Update `actions/setup-java` to version `3.13.0` (#1809)
> > * Update `actions/setup-python` to version `4.7.1` (#1831)
> > * Update `ch.qos.logback:logback-classic` to version `1.4.14` (#2028)
> > * Update `com.datastax.cassandra:cassandra-driver-core` to version
> > `3.11.5` (#1889)
> > * Update `com.fasterxml.jackson:jackson-bom` to version `2.16.0` (#1974)
> > * Update `com.github.luben:zstd-jni` to version `1.5.5-11` (#2032)
> > * Update `com.github.spotbugs:spotbugs-maven-plugin` to version
> > `4.7.3.6` (#1879)
> > * Update `com.github.tomakehurst:wiremock-jre8` to version `2.35.1` (#1765)
> > * Update 
> > `com.google.code.java-allocation-instrumenter:java-allocation-instrumenter`
> > to version `3.3.4` (#2102)
> > * Update `com.google.errorprone:error_prone_core` to version `2.23.0` 
> > (#1871)
> > * Update `com.google.guava:guava-testlib` to version `32.1.3-jre` (#1934)
> > * Update `com.h2database:h2` to version `2.2.224` (#1917)
> > * Update `commons-codec:commons-codec` to version `1.16.0` (#2054)
> > * Update `commons-io:commons-io` to ver

[ANNOUNCE] Apache Log4j 3.0.0-beta1 released

2023-12-22 Thread Volkan Yazıcı 
Apache Log4j team is pleased to announce the 3.0.0-beta1
release. Apache Log4j is a versatile, industrial-strength
Java logging framework composed of an API, its implementation,
and components to assist the deployment for various use cases.
For further information (support, download, etc.) see the project
website[1].

[1] https://logging.apache.org/log4j/3.x

== Release Notes

This is the first beta release of the upcoming major release, i.e., `3.0.0`.

=== Added

* Add annotations for nullability. (LOG4J2-1477)
* Remove deprecated code. (LOG4J2-2493)
* Add a more generalized dependency injection system to plugins
inspired by JSR 330. (LOG4J2-2803)
* Add and enhance structured properties for per-context settings
outside configuration files. (LOG4J2-3299[LOG4J2-3299], #1473)
* Automate artifact publishing and release preparation. (LOG4J2-3466)
* Add support for dependency injection of plugins into container types
such as `Optional`, `Collection`, `Set`, `Stream`,
`List`, and `Map`. (LOG4J2-3496)
* Add support for `ConstraintValidator` in plugin classes. (LOG4J2-3497)

=== Changed

* Remove liquibase-log4j2 maven module (#1193)
* Make the output of annotation processing reproducible. (#1520)
* Replace `synchronized` blocks with locks for improved performance
with virtual threads. (#1532)
* Removes additional `isFiltered` checks in `AsyncLoggerConfig`. (#1550)
* Ignore exceptions thrown by PropertySources. Eliminate
ClassCastException when SimpleLoggerContext is used.
(spring-projects/spring-boot#33450, #1799)
* Update `com.lmax:disruptor` to version `4.0.0` (#1829)
* Migrate most tests to JUnit 5. This includes a more powerful set of
test extensions. (LOG4J2-2653)
* Make Log4j use its own BOM. (LOG4J2-3511)
* Change encoding of HTTP Basic Authentication to UTF-8. (#1970)
* Upgraded the required compiler version to Java 17
* Upgraded the required runtime version to Java 17
* Update `actions/checkout` to version `4.1.1` (#1869)
* Update `actions/setup-java` to version `3.13.0` (#1809)
* Update `actions/setup-python` to version `4.7.1` (#1831)
* Update `ch.qos.logback:logback-classic` to version `1.4.14` (#2028)
* Update `com.datastax.cassandra:cassandra-driver-core` to version
`3.11.5` (#1889)
* Update `com.fasterxml.jackson:jackson-bom` to version `2.16.0` (#1974)
* Update `com.github.luben:zstd-jni` to version `1.5.5-11` (#2032)
* Update `com.github.spotbugs:spotbugs-maven-plugin` to version
`4.7.3.6` (#1879)
* Update `com.github.tomakehurst:wiremock-jre8` to version `2.35.1` (#1765)
* Update 
`com.google.code.java-allocation-instrumenter:java-allocation-instrumenter`
to version `3.3.4` (#2102)
* Update `com.google.errorprone:error_prone_core` to version `2.23.0` (#1871)
* Update `com.google.guava:guava-testlib` to version `32.1.3-jre` (#1934)
* Update `com.h2database:h2` to version `2.2.224` (#1917)
* Update `commons-codec:commons-codec` to version `1.16.0` (#2054)
* Update `commons-io:commons-io` to version `2.15.1` (#2035)
* Update `commons-logging:commons-logging` to version `1.3.0` (#2046)
* Update `de.flapdoodle.reverse:de.flapdoodle.reverse` to version
`1.7.2` (#2000)
* Update `io.netty:netty-bom` to version `4.1.104.Final` (#2097)
* Update `net.java.dev.jna:jna` to version `5.14.0` (#2082)
* Update `org.apache.aries.spifly:org.apache.aries.spifly.dynamic.bundle`
to version `1.3.7` (#2053)
* Update `org.apache.commons:commons-compress` to version `1.25.0` (#2055)
* Update `org.apache.commons:commons-csv` to version `1.10.0` (#2041)
* Update `org.apache.commons:commons-dbcp2` to version `2.11.0` (#2044)
* Update `org.apache.commons:commons-lang3` to version `3.14.0` (#2036)
* Update `org.apache.commons:commons-pool2` to version `2.12.0` (#2038)
* Update `org.apache.groovy:groovy-bom` to version `4.0.16` (#2039)
* Update `org.apache.maven:maven-core` to version `3.9.6` (#2049)
* Update `org.apache.maven.surefire:surefire-junit47` to version `3.2.3` (#2091)
* Update `org.apache.tomcat:tomcat-juli` to version `10.1.17` (#2086)
* Update `org.codehaus.plexus:plexus-utils` to version `3.5.1` (#2061)
* Update `org.eclipse.jetty:jetty-bom` to version `9.4.53.v20231009` (#1931)
* Update `org.eclipse.persistence:org.eclipse.persistence.jpa` to
version `2.7.13` (#1933)
* Update `org.eclipse.platform:org.eclipse.osgi` to version `3.18.600` (#2064)
* Update `org.elasticsearch.client:elasticsearch-rest-high-level-client`
to version `7.17.16` (#2085)
* Update `org.graalvm.truffle:truffle-api` to version `23.1.1` (#1872)
* Update `org.jctools:jctools-core` to version `4.0.2` (#1995)
* Update `org.jmdns:jmdns` to version `3.5.9` (#2069)
* Update `org.junit:junit-bom` to version `5.10.1` (#1993)
* Update `org.junit-pioneer:junit-pioneer` to version `2.2.0` (#1986)
* Update `org.mockito:mockito-bom` to version `5.8.0` (#2031)
* Update `org.mongodb:bson` to version `4.11.1` (#1991)
* Update `org.springframework.boot:spring-boot` to version `2.7.17` (#1902)
* Update `org.springframework.boot:spring-boot-dependencies` to
ve