The latest version is 0.9.8 and it is a common convention to use numbers less than 1 to mean pre-release, or beta version. Is this the case for OpenID4Java or does it use a different convention?
Would you have reservations about using it to protect important personal financial information, or has it received sufficient testing/auditing to prove it is sufficiently safe? Obviously, nobody can guarantee 100% security, but I'd like to know the level of confidence amongst people who know the project well.