New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Will there be a new release for 2.7? #623
Comments
Can you share why that is? |
We are a cloud provider, our Spark service currently comes with scala-collection-compat 2.7.0. Our customers' jobs are running with the version, upgrading to 2.9+ will be a potential breaking change for them, so it's not feasible. The ideal solution for us would be that there is a new 2.7.x release with the CVE fix, and we upgrade to the new version. So we wanted to know if it is possible. Thank you! |
Setting up branches for old versions, backporting fixes to old branches, and releasing from old branches is the sort of thing we typically do under commercial support contracts. In a purely open source context, community-based maintenance is focused on the current release series — especially when it's merely a minor version bump we're talking about, not a major, compatibility breaking one. |
I wanted to backport the fix for CVE-2022-36944 to 2.7, because upgrading to 2.9+ is a breaking change for our customers. I can work on the backport, but not sure if there will be a new release for 2.7?
The text was updated successfully, but these errors were encountered: