The Apache Maven team is pleased to announce the release of the Apache
Maven 3.9.5
Apache Maven is a software project management and comprehension tool. Based
on the concept of a project object model (POM), Maven can manage a
project's build, reporting and documentation from a central piece of
The Apache Maven team is pleased to announce the release of the Apache
Maven Invoker Plugin, version 3.3.0
The Maven Invoker Plugin is used to run a set of Maven projects.
The plugin can determine whether each project execution is successful,
and optionally can verify the output generated from a
The Apache Maven team is pleased to announce the release of the Apache
Maven Enforcer Plugin, version 3.1.0
This plugin provides goals to control certain environmental constraints
such as Maven version, JDK version and OS family
along with many more built-in rules and user created rules.
Description:
In Apache Maven maven-shared-utils prior to version 3.3.3, the Commandline
class can emit double-quoted strings without proper escaping, allowing shell
injection attacks.
This issue is being tracked as MSHARED-297
References:
https://issues.apache.org/jira/browse/MSHARED-297