Closed lcottret closed 2 years ago
Another idea, already mentioned in the issues : use another library then log4j that causes a lot of problems when we integrate it in other packages...
Yes, that is correct. We should create a new release very soon! Thanks for pointing that out.
A new snapshot release is available from Maven now. A new stable release will follow.
To use the current snapshot, please use
<dependency>
<groupId>org.sbml.jsbml</groupId>
<artifactId>jsbml</artifactId>
<version>1.6-SNAPSHOT</version>
</dependency>
Great ! Thanks.
Note : I had to add this to my pom.xml to find the dependency :
`
</repositories>`
I hope that the stable release will follow soon : we can't publish our package in maven central with non released dependencies. Maybe for Christmas day :-) ?
Hi, Happy new year ! I repeat my request: could you publish the current release to the maven central repository please ?
Hi, Happy new year ! I repeat my request: could you publish the current release to the maven central repository please ?
Happy new year, yes we are doing that at the moment. Trying to setup @draeger so that he can do the full release cycle and knows all the steps. There is currently an error when uploading to maven central that is not present when doing snapshot, we are looking into it. Hopefully, the release should be done this week. We will update the ticket as soon as it is ready to try.
@lcottret I am working on it. There was an error message that we could not solve yet. The problem is in one of the many SBML extension packages that could not successfully be uploaded to Maven (we don't know yet why that is happening) but since the processs is transactional it can only be completed when the entire package is successfully submitted. In other words, one package crashes everything. We are looking for the error as we speak.
Thanks @niko-rodrigue and @draeger . I sympathize with you, publishing in maven central is often a nightmare !
This is now solved with release 1.6.1.
Thanks for this new release !
Dear Jsbml team,
Thanks for updating log4j on the master ! But, the problem is that the package in maven has not changed since 2020. Do you plan to update the maven package so that it includes all the vulnerability fixes ?
Regards, Ludo Cottret