You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@maven.apache.org by "Piotr Zygielo (Jira)" <ji...@apache.org> on 2022/11/07 16:23:00 UTC

[jira] [Commented] (MNG-7593) Lack of old versions of org.jruby:jruby-core package in the maven index.

    [ https://issues.apache.org/jira/browse/MNG-7593?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17629893#comment-17629893 ] 

Piotr Zygielo commented on MNG-7593:
------------------------------------

This is wrong place to report this, use this [https://issues.sonatype.org/] instead.

> Lack of old versions of org.jruby:jruby-core package in the maven index.
> ------------------------------------------------------------------------
>
>                 Key: MNG-7593
>                 URL: https://issues.apache.org/jira/browse/MNG-7593
>             Project: Maven
>          Issue Type: Bug
>            Reporter: Kate Donk
>            Priority: Minor
>         Attachments: 3BDDA2CA-335A-4CD9-ADFF-0F51EEFDF181.jpeg
>
>
> Hello, I didn't find where else can I get an answer about this issue.
> While working with the [Maven index|[https://repo1.maven.org/] ] to get the list of all available versions of the Maven package: "org.jruby:jruby-core", for some reason there are a lot of old version numbers that are missing [here|[https://repo1.maven.org/maven2/org/jruby/jruby-core/maven-metadata.xml]] 
> There are much more versions that were before 1.6.0.RC3, is this data is missing on purpose? Or maybe I'm getting something wrong.
> I noticed that something isn't right because in OSV vulnerability DB this package had much smaller version as the fixed version for some CVE. I attached a screenshot.
> Thanks in advance, Kate.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)