Versions Compared

Old Version 5

changes.mady.by.user Lukasz Lenart

Saved on

compared with

New Version Current

changes.mady.by.user Lukasz Lenart

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 5.3

...

Sample Release Announcement

No Format
Subject: [ANN] Struts #.#.# [GA | Beta] release available
No Format

The Apache Struts group is pleased to announce that Struts 2#.0#.6# is available as a "#####[Beta | General Availability]" release. \[\[The Beta designation indicates that we believe the distribution needs wider testing before being upgraded to a "General Availability" release. Your input is essential.\] The GA designation is our highest quality grade.]

Apache Struts 2 is an elegant, extensible framework for creating enterprise-ready Java web applications. The framework is designed to streamline the full development cycle, from building, to deploying, to maintaining applications over time. \]

[

[This release includes one important security fix:]

All developers are strongly advised to update existing Struts 2 applications to Struts #.#.#.

Struts #.#.# is available in a full distribution, or as separate library, source, example and documentation distributions, from the releases page.
* http://struts.apache.org/download.cgi#struts###]

The release is also available from the central Maven repository under Group ID "org.apache.struts".

The #.#.x series of the Apache Struts framework has a minimum requirement of the following specification versions:
* Java Servlet #2.#4 and JavaServer Pages (JSP) #2.#0
* Java 2 Standard Platform Edition (J2SE) #.#5

The release notes are available online at:
* [http://struts.apache.org/2.x/docs/version-notes-xxx###.html]

Should any issues arise with your use of any version of the Struts framework, please post your comments to the user list, and, if appropriate, file a tracking ticket with JIRA.

.appropriate, file a tracking ticket:
* https://issues.apache.org/jira/browse/WW


- The Apache Struts group.

...

  • When a serious security issue arises, we should try to create a #.#.#.X branch from the last GA release, and apply to that branch only
    the security patch.
  • If the patch first applies to some other dependency, implore the other group to do the same, to avoid side-effects from other changes.
  • If the release manager would like to "fast track" a vote, so as to make a security fix available quickly, the preferred procedure is to
    • Wiki MarkupInclude the term "fast-track" in the subject, as in {{\[VOTE\] Struts 2.0.9.1 quality (fast track)}}
    • In the vote message, specify voting terms like:
No Format
The Struts #.#.#.# test build is now available.

(optional (in case of the presence of security bulletin)
It includes the latest security patches which fix two possible vulnerabilities:
* ...
* ...

Release notes
For details and the rationale behind these changes, please consult the
corresponding security bulletins:
* [httphttps://strutscwiki.apache.org/2.x/docs/release-notes-####.htmlconfluence/display/WW/S2-XXX
* https://cwiki.apache.org/confluence/display/WW/S2-XXX

Please note that currently these bulletins and the release notes are
only visible to logged-in users with the struts-committer role. This is
a needed requirement to control disclosure until the actual release is
announced.
(/optional)

Release notes:
* [https://cwiki.apache.org/confluence/display/WW/Version+Notes+#.#.#.#]

Distribution:
* [http://people.apache.org/builds/struts/#.#.#.#/]

Maven 2 staging repository:
* [https://repository.apache.org/content/groups/staging/]

Once you have had a chance to review the test build, please respond with a vote on its quality:

[ ] Leave at test build
[ ] Alpha
[ ] Beta
[ ] General Availability (GA)

Everyone who has tested the build is invited to vote. Votes by PMC members are considered binding. A vote passes if there are at least three binding +1s and more +1s than -1s.

This is a "fast-track" release vote. If we have a positive vote after 24 hours (at least three binding +1s and more +1s than -1s),  the release may be submitted for mirroring and announced to the usual channels.

The website download link will include the mirroring timestamp parameter [1], which limits the selection of mirrors to those that have been refreshed since the indicated time and date. (After 24 hours, we \*must\* remove the timestamp parameter from the website link, to avoid unnecessary server load.) In the case of a fast-track release, the email announcement will not link directly to <download.cgi>, but to <downloads.html>, so that we can control use of the timestamp parameter.

[1] <[http://apache.org/dev/mirrors.html#use|http://apache.org/dev/mirrors.html#use]>

- The Apache Struts group.

Please be sure to update Security Bulletins accordingly as described above.