You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to clojars-maintainers
Howdy folks!
We just released Clojars 122. Here is what changed since the last
announcement (for 114):
- A fix in the generate-feeds logic that allows for a version segment
that is longer than an int
- A fix for a possible XSS vulnerability via :licenses or :scm in the
pom file (thanks to Renato Alencar[1] for the report)
- A fix in the authentication flow that was rejecting unauthenticated
deploy requests too early, preventing the "deploy token is required"
message from being returned
- GitHub will now report any deploy tokens found in public
commits/comments. Clojars will disable the token and email the owner
(this functionality existed pre-114, but the change on the GitHub side
was deployed since)
- You can now login via OAuth with your GitHub account (thanks again
to Renato Alencar[1] for adding this)