Re: proposal for maven-archetype to switch to dom4j 2.1.1 (and Java 8)

2019-05-31 Thread Enrico Olivelli
+1 Enrico Il ven 31 mag 2019, 21:02 Homer, Tony ha scritto: > Currently maven-archetype depends on dom4j 1.6.1 which is vulnerable to > CVE-2018-1000632 [1]. > I filed ARCHETYPE-567 [2] to track this. > In order to mitigate this vulnerability, an update to dom4j 2.1.1 is > needed. > dom4j 2.1.x

proposal for maven-archetype to switch to dom4j 2.1.1 (and Java 8)

2019-05-31 Thread Homer, Tony
Currently maven-archetype depends on dom4j 1.6.1 which is vulnerable to CVE-2018-1000632 [1]. I filed ARCHETYPE-567 [2] to track this. In order to mitigate this vulnerability, an update to dom4j 2.1.1 is needed. dom4j 2.1.x requires Java 8+ [3]. dom4j 2.0.x would retain compatibility with Java 7 (

Re: [VOTE] Release Maven Doxia version 1.9

2019-05-31 Thread Sylwester Lachiewicz
+1 Sylwester W dniu pt., 31.05.2019 o 16:01 Tibor Digana napisał(a): > +1, successful build, sha512 ok > > On Thu, May 30, 2019 at 5:26 PM Michael Osipov > wrote: > > > Hi, > > > > We solved 22 issues: > > > > > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317230&version=1

Re: [VOTE] Release Maven Doxia version 1.9

2019-05-31 Thread Tibor Digana
+1, successful build, sha512 ok On Thu, May 30, 2019 at 5:26 PM Michael Osipov wrote: > Hi, > > We solved 22 issues: > > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317230&version=12342342 > > There are still a couple of issues left in JIRA: > > https://issues.apache.org/j

Re: [VOTE] Release Maven Doxia version 1.9

2019-05-31 Thread Francois Papon
+1 (non-binding) Thanks! regards, François fpa...@apache.org Le 30/05/2019 à 19:26, Michael Osipov a écrit : > Hi, > > We solved 22 issues: > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317230&version=12342342 > > > There are still a couple of issues left in JIRA: > https

JDK 13 - Early Access build 23 is available

2019-05-31 Thread Rory O'Donnell
Hi Robert , *OpenJDK builds *- JDK 13 - Early Access build 23 is available at http://jdk.java.net/13/ * These early-access , open-source builds are provided under the o GNU General Public License, version 2, with the Classpath Exception

API recursively reading parent POMs

2019-05-31 Thread Diaz Gonzalez, Jaime
Hello everyone, In my current project we are implementing an algorithm which gets as input the location of a Maven project "B" and tries to load all the compiled classes (including its dependencies) into a customized URLClassLoader. We have been able to load all the dependencies from the curren