Hi there :-) You can follow the vote on the first release candidate for 2.42.0 here: https://lists.apache.org/thread/ho2mvvgc253my1ovqmrxjpql8gvz0285
Thanks, Evan On Tue, Sep 27, 2022 at 7:16 AM Varun Chopra via user <[email protected]> wrote: > Classification: Public > > > > Hi Team, > > > > We at Deutsche Bank are using Apache Beam SDK 2.41.0 and it has > Vulnerabilities of *netty-codec* under *beam-vendor-grpc* jar. > > > > We checked the Github fixes and seems like the code is fixed and merged. > > > > We wanted to understand when can we expect Apache Beam SDK 2.42.0 Version, > so that we can start using it. > > > > We have some urgent requirement for this fix, If you can provide some > dates that will help. > > > > Kind Regards, > Varun Chopra > > > > > --- > This e-mail may contain confidential and/or privileged information. If you > are not the intended recipient (or have received this e-mail in error) > please notify the sender immediately and destroy this e-mail. Any > unauthorized copying, disclosure or distribution of the material in this > e-mail is strictly forbidden. > > Privacy of communications > In order to monitor compliance with legal and regulatory obligations and > our policies, procedures and compliance programs, we may review emails and > instant messages passing through our IT systems (including any personal > data and customer information they contain), and record telephone calls > routed via our telephone systems. We will only do so in accordance with > local laws and regulations. In some countries please refer to your local DB > website for a copy of our Privacy Policy. > > Please refer to https://db.com/disclosures for additional EU corporate > and regulatory disclosures. >
