Reviews run for a minimum of one week. The outcome of the review is decided on this date. This is the last day to make comments or ask questions about this review.
3.27.0
This release ensures compatibility with the latest Eclipse Platform 4.30, Simultaneous Release 2023-12, and Jetty 12.0. In addition to that it contains fixes for small issues.
The dependencies of RAP Runtime Equinox target and RAP Tools have been upgraded to use Jetty 12 instead of Jetty 10. RAP still depends on Servlet 4, although with RAP 3.26 most incompatibilities with Servlet 6 have been removed.
In Eclipse RAP versions from 3.0.0 up to and including 3.25.0, Remote Code Execution is possible on Windows when using the FileUpload component - see CVE-2023-4760 for details. The fix is part of all official releases since RAP 3.26.
- Log in to post comments
First, this is supposed to be
Submitted by Markus Knauer on Fri, 11/24/2023 - 05:27
First, this is supposed to be our yearly review, and should probably be a "progress" review instead of a release review.
In addition to that I think an IP review needs to be done, but when I am following the description in eclipse/dash-licenses#example-maven I get a file maven.deps with the content
The following files have been resolved:
none
Does that mean all is good, or is the tool not working?