Hi, I'd like to initiate a discussion on releasing Flink 1.10.3. There were a few requests in favor of this already in [1] and [2].
I checked the release-1.10 branch: 55 commits are not released, yet. Some non-released fixes that might be relevant are: - FLINK-20218 [3] - fix "module 'urllib' has no attribute 'parse'" due to ProtoBuf version update - FLINK-20013 [4] - BoundedBlockingSubpartition may leak network buffer - FLINK-19252 [5] - temporary folder is not created when missing - FLINK-19557 [6] - LeaderRetrievalListener notification upon ZooKeeper reconnection - FLINK-19523 [7] - hide sensitive information in logs In addition to that, we would like to include a backport for CVE-2020-17518 and CVE-2020-17519 to cover the request in [2]. The travis-ci build chain for release-1.10 seems to be stable [8]. Any thoughts on that? Unfortunately, I cannot volunteer as a release manager due to the lack of permissions. But I wanted to start the discussion, anyway. Best, Matthias [1] http://apache-flink-mailing-list-archive.1008284.n3.nabble.com/ANNOUNCE-Weekly-Community-Update-2020-44-45-td46486.html#a47610 [2] https://issues.apache.org/jira/browse/FLINK-20875 [3] https://issues.apache.org/jira/browse/FLINK-20218 [4] https://issues.apache.org/jira/browse/FLINK-20013 [5] https://issues.apache.org/jira/browse/FLINK-19252 [6] https://issues.apache.org/jira/browse/FLINK-19557 [7] https://issues.apache.org/jira/browse/FLINK-19523 [8] https://travis-ci.com/github/apache/flink/builds/212749910
