You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@tika.apache.org by Tim Allison <ta...@apache.org> on 2021/12/19 14:07:11 UTC

[CANCELED] [VOTE] Release Apache Tika 1.28 Candidate #1

All,
  I'm now -1 on this given that log4j 2.17.0 is available.  I'm not
that troubled by the current security vuln found in 2.16.0, but I'd
like to avoid the communications between the PMC and our community and
between our community and their security scanners about why we aren't
on 2.17.0.
  I'll respin today with some other minor upgrades.

   Best,

            Tim


On Thu, Dec 16, 2021 at 12:01 PM Tim Allison <ta...@apache.org> wrote:
>
> A candidate for the Tika 1.28 release is available at:
>   https://dist.apache.org/repos/dist/dev/tika/1.28
>
> The release candidate is a zip archive of the sources in:
>   https://github.com/apache/tika/tree/1.28-rc1/
>
> The SHA-512 checksum of the archive is
>   135ed157764016ada48194afc0d4a32831f852b37d5791d110b037384d186ffc7f3b32719f99a7d541f047f80c183298b13bd9fecff0b85e1c0610e2c695a014.
>
> In addition, a staged maven repository is available here:
>   https://repository.apache.org/content/repositories/orgapachetika-1074/org/apache/tika
>
> Please vote on releasing this package as Apache Tika 1.28.
> The vote is open for the next 72 hours and passes if a majority of at
> least three +1 Tika PMC votes are cast.
>
> [ ] +1 Release this package as Apache Tika 1.28
> [ ] -1 Do not release this package because...
>
> Here's my +1
>
> Cheers,
>
>           Tim