[
https://issues.apache.org/jira/browse/THRIFT-5972?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18078234#comment-18078234
]
Jens Geyer commented on THRIFT-5972:
------------------------------------
I reported them myself so your list is probably right.
The maven upload ... yes I did that in the past and it sztopped working for
0.22.0 so someone else did it. Its a [manual process outlined
here](https://github.com/apache/thrift/blob/master/lib/java/README.md#publishing-maven-artifacts-to-maven-central).
For 0.23.0 I simply did not have the time to try again. If someone else jumps
in having appropriate access rights that would be much appreciated.
> 0.23.0 "published" to public Maven
> ----------------------------------
>
> Key: THRIFT-5972
> URL: https://issues.apache.org/jira/browse/THRIFT-5972
> Project: Thrift
> Issue Type: Improvement
> Components: Java - Library
> Affects Versions: 0.23.0
> Reporter: Shh
> Priority: Major
>
> HI.
>
> 0.23.0 addresses a critical vulnerability.
> and is available as a download here:
>
> [Release Version 0.23.0 · apache/thrift ·
> GitHub|https://github.com/apache/thrift/releases/tag/v0.23.0]
>
> My company's build systems are tied to public maven central.
>
> and 0.23.0 is not avaiable here.
>
> [Maven Repository: org.apache.thrift »
> libthrift|https://mvnrepository.com/artifact/org.apache.thrift/libthrift]
> (currently only 0.22.0 and lower is available).
>
>
> I am kindly requesting that the library be "published" to maven-central.
>
> Note, the time gap on 0.22.0 seems to have been about one month.
>
> I appreciated the consideration.
>
> thank you.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
