The Apache Causeway team is pleased to announce the release of Apache Causeway 3.5.0.
This is primarily a security release, to address CVE-2025-64408 [4], which relates to a deserialization vulnerability with view models. This release also improves support for static weaving of JPA/EclipseLink. Full release notes are available on the Apache Causeway website at [1]. You can access this release directly from the Maven central repo [2]. Alternatively, download the release and build it from source [3]. Enjoy! --The Apache Causeway team [1] https://causeway.apache.org/relnotes/3.5.0/about.html [2] https://search.maven.org [3] https://causeway.apache.org/docs/latest/downloads/how-to.html [4] https://www.cve.org/CVERecord?id=CVE-2025-64408
