Uploaded image for project: 'Tapestry'
  1. Tapestry
  2. TAPESTRY-1249

4.1.1 binary downloads include non-Apache modules (including OGNL and Javassist).

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 4.1.1
    • Fix Version/s: 4.1.2
    • Component/s: Build
    • Labels:
      None

      Description

      I was just building the download pages for Tapestry 5.0.1 and noticed that the 4.1.1 binaries include ognl.jar, etc. This is absolutely against Apache guidelines (only Apache software may be downloaded from the Apache mirrors, directly or otherwise). Tapestry 4.0.x went to great measures to download the necessary dependencies (OGNL, Javassist) as needed, a pain for users, but part of the cost of going outside the Apache fold.

        Attachments

          Activity

            People

            • Assignee:
              jkuhnert Jesse Kuhnert
              Reporter:
              hlship Howard M. Lewis Ship
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: