CometD 5.0.2 has been released.
CometD 5.0.2 is a minor bugfix release, see here for the list of fixed issues:
Note that the Jetty dependency has been updated to 9.4.33.v20201020
due to a vulnerability discovered in Jetty, so you should consider
upgrading Jetty even if you don't upgrade CometD.
Note also that the resolution of
makes stricter checks on
the channel names that client applications can use.
These checks were already performed on the server side, so chances are
that you were not using illegal channel names already and therefore
your application do not need any change.
Users that are still using CometD 4.0.x are encouraged to move to CometD 5.0.x.
Follow the migration guide:
As a minor update, I have also released in the past days CometD 4.0.9.
This is a release that was made for CometD customers that have
commercial support (see
), but is
available to anyone.
However, these releases are quite ad-hoc, i.e. they don't incorporate
all fixes and improvements that the 5.0.x line has. As such, you are
suggested to upgrade to 5.0.x as soon as possible.
Developer advice, training, services and support
from the Jetty & CometD experts.