We have decided to cancel this vote. We have received a vulnerability report from the Apache Security Team and have confirmed the existence of the vulnerability, and we will address these vulnerabilities in the next RC. We will send a email to the community later to announce this vote is cancel.
Best, Huajie Wang Huajie Wang <benj...@apache.org> 于2023年11月29日周三 01:21写道: > Hi Justin: > > Thanks for your feedback. As you mentioned, -1 vote is not a veto, because a > bug has been found. In order to provide users with a stable version, we still > recommend merging this patch and going through the voting process again > before reissuing the release. We believe this would be better. However, > regarding the issue with the license for vue3-template that you mentioned > earlier, if it exists, it must be resolved before the release can proceed. > That would be a valid reason to hold back the release. We have already > clarified vue3-template license issue. So, can you confirm, please? > > Best, > Huajie Wang > > > > Justin Mclean <jus...@classsoftware.com> 于2023年11月28日周二 09:10写道: > >> HI, >> >> While you have fixed the issues (from a quick look), that doesn’t fix >> this release. You have 3 +1 votes; theoretically, you could release this as >> a -1 vote is not a veto; however, it has licensing issues that users may >> not be aware of and the IPMC could vote -1 on it. IMO, you need to cancel >> this release and vote on another release candidate. >> >> Kind Regards, >> Justin > >
