You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@sling.apache.org by Radu Cotescu <ra...@apache.org> on 2017/12/22 11:55:00 UTC

[VOTE] Release Apache Sling XSS Protection API 2.0.2

Hi,

We solved 1 issue in this release:
https://issues.apache.org/jira/projects/SLING/versions/12342154

Staging repository:
https://repository.apache.org/content/repositories/orgapachesling-1840

You can use this UNIX script to download the release and verify the
signatures:
https://raw.githubusercontent.com/apache/sling-tooling-release/master/check_staged_release.sh

Usage:
curl
https://raw.githubusercontent.com/apache/sling-tooling-release/master/check_staged_release.sh
| bash -s 1840

Please vote to approve this release:

  [ ] +1 Approve the release
  [ ]  0 Don't care
  [ ] -1 Don't release, because ...

This majority vote is open for at least 72 hours.

Cheers,
Radu

[CANCEL][VOTE] Release Apache Sling XSS Protection API 2.0.2

Posted by Radu Cotescu <ra...@apache.org>.

I realised that the proposed fix introduces a subtle decoding error. I'm
therefore cancelling this release. Will send a new patch and start the vote
for version 2.0.4.

Re: [VOTE] Release Apache Sling XSS Protection API 2.0.2

Posted by Oliver Lietz <ap...@oliverlietz.de>.

On Friday 22 December 2017 11:55:00 Radu Cotescu wrote:
> Hi,
> 
> We solved 1 issue in this release:
> https://issues.apache.org/jira/projects/SLING/versions/12342154

+1 (no security checks)

O.

RE: [VOTE] Release Apache Sling XSS Protection API 2.0.2

Posted by Stefan Seifert <ss...@pro-vision.de>.

+1