Re: [orbit-dev] [cross-project-issues-dev] log4j vulnerability in Eclips

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [orbit-dev] [cross-project-issues-dev] log4j vulnerability in Eclipse?

From: Gunnar Wagenknecht <gunnar@xxxxxxxxxxxxxxx>
Date: Sat, 11 Dec 2021 11:35:12 +0100
Delivered-to: orbit-dev@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/orbit-dev/>
List-help: <mailto:orbit-dev-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/orbit-dev>, <mailto:orbit-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/orbit-dev>, <mailto:orbit-dev-request@eclipse.org?subject=unsubscribe>

Alexander,

On Dec 11, 2021, at 10:16, Alexander Fedorov <alexander.fedorov@xxxxxxxxxx> wrote:
It would be great to learn vulnerability clean-up process with Eclipse Orbit team to then apply it to Eclipse Passage.

There is no Orbit team. Orbit is driven by project committers using/needing libraries in Orbit.

I encourage the Eclipse Passage project to submit a Gerrit review for a newer version.

You can also try a new way as described by Mickael here:

https://www.eclipse.org/lists/orbit-dev/msg05509.html

-Gunnar

Follow-Ups:
- Re: [orbit-dev] [cross-project-issues-dev] log4j vulnerability in Eclipse?
  - From: Matthias Sohn

Prev by Date: [orbit-dev] Platform has success consuming some upstream deps, without Orbit
Next by Date: Re: [orbit-dev] [cross-project-issues-dev] log4j vulnerability in Eclipse?
Previous by thread: [orbit-dev] Platform has success consuming some upstream deps, without Orbit
Next by thread: Re: [orbit-dev] [cross-project-issues-dev] log4j vulnerability in Eclipse?
Index(es):
- Date
- Thread

Breadcrumbs