yesamer commented on issue #6247: URL: https://github.com/apache/incubator-kie-drools/issues/6247#issuecomment-2659648538
Hi @alexsuter, thank you for sharing your concerns. In an ideal world, I agree with you that would be the best goal to achieve. In the real world that is not always the case, and we need to settle with compromises. Apache KIE is committed to resolving most of the CVEs detected, and, as you may noticed, I personally resolved this CVE some months ago. Indeed our release process is still far from ideal, we are currently working on improving it and having more frequent releases in the future. At this moment, I can just tell you the next release (10.1.0) will contain the fix of the reported CVE. It's just a matter of time, then. Thank you for your understanding, Yeser. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
