The Apache Software Foundation Blog

Friday September 21, 2018

The Apache News Round-up: week ending 21 September 2018

As another week draws to a close, let's take a look at the Apache community's activities from the past week:

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - The Apache Software Foundation Operations Summary: May - July 2018 https://s.apache.org/qiKn
 - Next Board Meeting: 17 October. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ASF Fundraising –support through donations and Sponsorship help offset the ASF's day-to-day operating expenses and keep Apache software for everyone.
 - The Apache® Software Foundation Welcomes Tencent as its Newest Sponsor at the Platinum Level https://s.apache.org/KzEz

ApacheCon™ –the ASF's official global conference series, now in its 20th year.
 - 24-27 September: T-3 days to Montreal. 100+ Apache project and community sessions, from CloudStack to Spark to Tomcat to Geospatial to Hackathon, BarCamp, and more. See you there! http://apachecon.com/acna18/
 - Guest Post: looking forward to learning more about the wide array of projects in the Apache fold at ApacheCon https://s.apache.org/RkWd
 - 4 December: Apache Roadshow DC and Open Source Job Fair. CFP open through 15 October http://www.apachecon.com/usroadshow18/

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield deft performance at 99.41% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 504 Apache contributors changed 1,297,500 lines of code over 3,801 commits. Top 5 contributors, in order, are: Radu Cotescu, Jean-Baptiste Onofré, Carsten Ziegeler, Hervé Boutemy, and Carlos Sanchez Gonzalez.

Apache Attic –provides process and solutions to make it clear when an Apache project has reached its end of life.
 - Apache Lucy has retired http://mail-archives.apache.org/mod_mbox/www-announce/201809.mbox/%3Cpony-a4cac82164ef67d9d07d379b5d5d8c4abe1e02ff-a56909df10a4d5ddf5298357d8c193a36e67aeb0%40announce.apache.org%3E

Apache Atlas™ –a scalable and extensible set of core foundational governance services.
 -  Apache Atlas 1.1.0 released http://atlas.apache.org/

Apache Calcite™ Avatica Go –framework for building database drivers; the Avatica Go client is a Go database/sql driver that enables Go programs to communicate with the Avatica server.
 - Apache Calcite Avatica Go 3.2.0 released https://calcite.apache.org/

Apache Directory™ Studio –a complete directory tooling platform intended to be used with any LDAP server however it is particularly designed for use with ApacheDS.
 - Apache Directory Studio 2.0-0-M14 released https://directory.apache.org/

Apache Flink™ –an Open Source stream processing framework for distributed, high-performing, always-available, and accurate data streaming applications.
 - Apache Flink 1.5.4 and 1.6.1 released https://flink.apache.org/

Apache Jackrabbit™ –a scalable, high-performance hierarchical content repository designed for use as the foundation of modern world-class Web sites and other demanding content applications.
 - Apache Jackrabbit Oak 1.6.14 released http://jackrabbit.apache.org/

Apache JMeter™ –a 100% pure Java application designed to test server applications.
 - Apache JMeter 5.0 released http://jmeter.apache.org/

Apache Kylin™ –an Open Source Distributed Analytics Engine designed to provide SQL interface and multi-dimensional analysis (OLAP) on Apache Hadoop, supporting extremely large datasets.
 - Apache Kylin 2.5.0 released https://kylin.apache.org/

Apache Portable Runtime™ –software libraries that provide a predictable and consistent interface to underlying platform-specific implementations.
 - Apache Portable Runtime APR 1.6.5 released http://apr.apache.org/

Apache Pulsar (incubating) –a highly scalable, low latency messaging platform running on commodity hardware.
 - Apache Pulsar 2.1.1-incubating released https://pulsar.incubator.apache.org/

Apache SpamAssassin™ –an extensible email filter used to identify spam.
 - Apache SpamAssassin 3.4.2 released https://spamassassin.apache.org/
 - Apache SpamAssassin 3.4.2 resolves CVE-2017-15705, CVE-2016-1238, CVE-2018-11780 & CVE-2018-11781 http://mail-archives.apache.org/mod_mbox/www-announce/201809.mbox/%3CCAMMMAUH38nTHLyjMkZQdhLHh6trT%2BEzd%3DMGhS%3D%2B%3DbTuGWcYJSA%40mail.gmail.com%3E

Apache Tika™ –a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries.
 - Apache Tika 1.19 released http://tika.apache.org/
 - [CVE-2018-11761] Apache Tika DoS XML Entity Expansion Vulnerability http://mail-archives.apache.org/mod_mbox/www-announce/201809.mbox/%3CCAC1dCwVx2Z1haCnvYBhH7nQRN4kYKjwkLfjsCbeFHv2tRcBonA%40mail.gmail.com%3E
 - [CVE-2018-11762] Zip Slip Vulnerability in Apache Tika's tika-app http://mail-archives.apache.org/mod_mbox/www-announce/201809.mbox/%3CCAC1dCwV2-kTJKjNO1rV65bQrekkur7OWAu1x%2BpPRToRRYk%3DGPA%40mail.gmail.com%3E
 - [CVE-2018-8017] Apache Tika Denial of Service Vulnerability -- Potential Infinite Loop in IptcAnpaParser http://mail-archives.apache.org/mod_mbox/www-announce/201809.mbox/%3CCAC1dCwVOEYsB1c4s2DYkhsafT8q3Fupt_OFugXj9J1RCZuf3UQ%40mail.gmail.com%3E

Apache Tomcat™ –an Open Source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and JASPIC technologies.
- Apache Tomcat 7.0.91 released https://tomcat.apache.org/

Apache Wicket™ –an Open Source Java component oriented Web application framework that powers thousands of Web applications and Web sites for governments, stores, universities, cities, banks, email providers, and more.
 - Apache Wicket 8.1.0 released http://wicket.apache.org/

Did You Know?

 - Did you know that, according to a survey by DZone asking "What Open Source Software Do You Use?", the leading answer is "Apache"? https://projects.apache.org/

 - Did you know that Apache CouchDB provides binaries (RPMs and debs)? http://couchdb.apache.org/

 - Did you know that you can join us at BarCampApache next week during ApacheCon? https://wiki.apache.org/apachecon/BarCampApacheMontreal

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - The Apache Spark community will be presenting at In-Memory Computing Summit North America 2-3 October in San Francicso https://www.imcsummit.org/2018/us/

 - The Apache Big Data community will be at DataWorks Summit 18-21 March 2019 in Barcelona and 20-23 May 2019 in Washington DC https://dataworkssummit.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # # 

Thursday September 20, 2018

The Apache® Software Foundation Welcomes Tencent as its Newest Sponsor at the Platinum Level

Joins ASF Platinum Sponsors Cloudera, Comcast, Facebook, Google, LeaseWeb, Microsoft, Oath, and Pineapple Fund in supporting the ASF's Mission of Providing Software For the Public Good

Wakefield, MA —20 September 2018— The Apache® Software Foundation (ASF), the all-volunteer developers, stewards, and incubators of more than 350 Open Source projects and initiatives, announced today sponsorship by Tencent at the Platinum level.

Tencent is the first company from China to become a Platinum Sponsor of the ASF. Numerous individuals employed by Tencent are active contributors to several Apache projects, including Hadoop, HBase, Hive, MXNet (incubating), Parquet, and Spark.

"We are pleased to welcome Tencent, whose generosity, along with that of our other sponsors, offsets our day-to-day operating costs," said ASF Chairman Phil Steitz. "Sponsoring the ASF helps us successfully shepherd more than 300 projects and their communities, mentor dozens of open source innovations in the Apache Incubator, deepen community outreach, and furthers our mission of providing software for the public good 'The Apache Way'."

"We are very proud to join Apache family, as the first Platinum level sponsor from China, after a long time contributing on Open Source projects, include: Hadoop, HBase, Spark, etc.," said Huixing Wang, VP at Tencent Cloud. "Sponsoring ASF is an evidence that Tencent will encourage more talented engineers to join Open Source contributions and innovations, and we firmly believe that Open Source technology can make the world better."

Tencent joins the following ASF Sponsors:

Platinum —Cloudera, Comcast, Facebook, Google, LeaseWeb, Microsoft, Oath, and Pineapple Fund;
Gold —Anonymous, ARM, Bloomberg, Hortonworks, Huawei, IBM, Indeed, ODPi, Pivotal;
Silver —Aetna, Alibaba Cloud Computing, Budget Direct, Capital One, Cerner, Private Internet Access, Red Hat, Target, Union Investment;
Bronze —Airport Rentals, The Best VPN, The Blog Starter, Bookmakers, Cash Store, Casino Bonus, Casino2k, Cloudsoft, Emerio, HostChecka.com, HostingAdvice.com, HostPapa Web Hosting, The Linux Foundation, Mobile Slots, SCAMS.info, Site Builder Report, Talend, Twitter, Web Hosting Secret Revealed;
Platinum Targeted —DLA Pipser, Microsoft, Oath, OSU Open Source Labs, Sonatype;
Gold Targeted —Atlassian, The CrytpoFund, Datadog, PhoenixNAP, Quenda;
Silver Targeted —Amazon Web Services, Hotwax Systems,  Rackspace;
Bronze Targeted —Assembla, Bintray, Education Networks of America, Google, Hopsie, No-IP, PagerDuty, Peregrine Computer Consultants Corporation, Sonic.net, SURFnet, Virtru.

To Sponsor the ASF, visit http://apache.org/foundation/sponsorship.html

About Tencent and Tencent Cloud
Tencent uses technology to enrich the lives of Internet users. Our social products Weixin and QQ link our users to a rich digital content catalogue including games, video, music and books. Our proprietary targeting technology helps advertisers reach out to hundreds of millions of consumers in China. Our infrastructure services including payment, security, cloud and artificial intelligence create differentiated offerings and support our partners’ business growth. Tencent invests heavily in people and innovation, enabling us to evolve with the Internet.Tencent was founded in Shenzhen, China, in 1998. Shares of Tencent (00700.HK) are traded on the Main Board of the Stock Exchange of Hong Kong. https://www.tencent.com/

As the subsidiary of Tencent focused on developing cloud computing and artificial intelligence (AI) technologies, Tencent Cloud offers leading technological products and services and customized industry-specific solutions in the fields of cloud computing, big data, artificial intelligence to government agencies, corporations and individual developers around the world.

About The Apache Software Foundation (ASF)
Established in 1999, the all-volunteer Foundation oversees more than 350 leading Open Source projects, including Apache HTTP Server --the world's most popular Web server software. Through the ASF's meritocratic process known as "The Apache Way," more than 700 individual Members and 6,600 Committers successfully collaborate to develop freely available enterprise-grade software, benefiting billions of users worldwide: thousands of software solutions are distributed under the Apache License; and the community actively participates in ASF mailing lists, mentoring initiatives, and ApacheCon, the Foundation's official user conference, trainings, and expo. The ASF is a US 501(c)(3) charitable organization, funded by individual donations and corporate sponsors including Aetna, Alibaba Cloud Computing, Anonymous, ARM, Bloomberg, Budget Direct, Capital One, Cerner, Cloudera, Comcast, Facebook, Google, Hortonworks, Huawei, IBM, Indeed, Inspur, LeaseWeb, Microsoft, Oath, ODPi, Pineapple Fund, Pivotal, Private Internet Access, Red Hat, Target, and Union Investment. For more information, visit http://www.apache.org/ and https://twitter.com/TheASF

© The Apache Software Foundation. "Apache", "Apache HTTP Server", and "ApacheCon" are registered trademarks or trademarks of the Apache Software Foundation in the United States and/or other countries. All other brands and trademarks are the property of their respective owners.

# # # 

Tuesday September 18, 2018

The Apache Software Foundation Operations Summary: May - July 2018

FOUNDATION OPERATIONS SUMMARY

First Quarter, Fiscal Year 2019 (May - July 2018)

"The most popular open source software is Apache..."
— DZone “What Open Source Software Do You Use?” [February 2018]

> Conferences and Events: The Apache Europe Roadshow was held in Berlin, Germany, June 11-14th of this year. It was held in cooperation with the FOSS BackStage and Berlin Buzzwords events, at the Kulturbrauerei. The event also served as a preliminary investigation of the venue, and of the production company running the event, as a possible good fit for ApacheCon Europe 2019. This event was a great success, by all measures. Much of the content from that event is available on YouTube, at https://s.apache.org/b5UX

At the end of the quarter in question, we were well into planning ApacheCon North America, which will be held in Montreal, September 24-27th. Details of that event are available at https://apachecon.com/acna18

> Travel Assistance: The Travel assistance Committee exists to help those get to ApacheCon and other ASF related events (such as Apache Roadshows or project specific get togethers) that would not otherwise afford to go. During this quarter, the committee is gearing up to send successful applicants to ApacheCon NA in Montreal, Canada. More than 30 people applied via https://tac-apply.apache.org. In the end, 13 were accepted for financial support and all are being assisted for flights, accommodation and Conference fees. During the Conference itself they will assist with introducing other speakers - some are speakers themselves - and a few other minor duties, but importantly they get to meet other ASF folks, members of their project community etc.

TAC expects to spend around USD $25K of its budget at this event. No other events are scheduled at the moment in regards TAC involvement.

> Community Development: During this quarter our key focus was on continuing to support participation in events. Throughout May our main focus was helping with the planning, communications and preparations for the Apache EU Roadshow in Berlin. As well as promoting the event, we were also actively involved with helping manage and co-ordinate the event content. Over 70 talks were submitted for the CFP and a total of 28 were eventually selected for the two day Roadshow programme. 

In June the Apache EU Roadshow took place, co-located with Berlin Buzzwords and FOSS Backstage. The Roadshow was made up of an Apache Lounge and two full day tracks focussing on Apache Tomcat, IoT, Cloud technologies, Micro-services and Apache Httpd Server. Our Apache Lounge was very popular with attendees as an informal place to find out more information about Apache, meet-up or collaborate. Feedback from attendees indicate that the event and co-location was very successful. All videos, photos and presentations from the event have been published and we have already received feedback from attendees to help us improve any future events. We also took the opportunity to record some interviews for our FeatherCast podcast channel.  As well as interviews with attendees and speakers, we have started a short series called 'Board Conversations' where members of the Apache Board of Directors talk about their role. The co-location with FOSS Backstage worked well and feedback from the event was very positive. As a result  we are now looking at running Apache Roadshows in other locations.

Also in June we were invited to participate again at the Open Expo Europe in Madrid. This is the second year that we have had a presence at this conference. As well as a booth we also had several presentations about Apache projects, community development and the Apache Way. Once again, feedback from attendees was very positive and we are happy to be able to have the opportunity to promoting Apache and its projects to the Spanish speaking community.

Our main focus during July was around our participation at OSCON. This was was a great opportunity to reach out to a potentially new audience. We had an Apache booth and also several presentations at the event on topics such as Innersourcing and Financial inclusion. We received a constant stream of visitors that ranged from those thanking us for our contribution to open source to those wanting to find out what the foundation does. Our stock of stickers and giveaways ran out faster than anticipated so we will make sure that in future we have more stock.

We are now receiving more invitations to participate at more events and so are looking at how we can adjust our volunteer effort to integrate with this. We are now starting to see new people beginning to volunteer at  a regional level and to help support this we are now locating banners and other booth related supplies at several locations globally.

Our mailing list subscriptions have increased this quarter although traffic is lower and we are continuing to publish our monthly blog update.

> Committers and Contributions: Over the past quarter, 1,701 contributors committed 47,375 changes that amount to 15,276,185 lines of code across Apache projects. The top 5 contributors during this timeframe were: Duo Zhang (746 commits), Gary Gregory (712 commits), Andrea Cosentino (615 commits), Jean-Baptiste Onofré (551 commits), and Mark Thomas (455 commits).


All individuals who are granted write access to the Apache repositories must submit an Individual Contributor License Agreement (ICLA). Corporations that have assigned employees to work on Apache projects as part of an employment agreement may sign a Corporate CLA (CCLA) for contributing intellectual property via the corporation. Individuals or corporations donating a body of existing software or documentation to one of the Apache projects need to execute a formal Software Grant Agreement (SGA) with the ASF. 

During Q1 FY2019, the ASF Secretary processed 166 ICLAs, 9 CCLAs, and 6 Software Grants. Apache committer activity can be seen at http://status.apache.org/#commits

> Brand Management: Operations --the work of the Brand Management team falls broadly into one of three categories: 1) trademark registrations; 2) granting permission to use our marks; 3) addressing potential infringements of our marks. The volume of work continues to grow steadily as the foundation grows. Both registrations and addressing potential infringements are tasks that typically span many months. The GMail based tracking system continues to provide significant benefits in terms of reducing the overhead of tracking these long running tasks and ensuring that nothing falls through the cracks.

This quarter has seen the usual collection of requests to use Apache marks for events, merchandise and publications with nearly all requests being granted, subject to our Trademark Usage Policy. We have also had a couple of requests to use our marks for websites to promote one or more of our projects. In each case we have directed the enquirer to discuss and develop their ideas with the relevant project communities before seeking formal approval.

An enquiry that was, as far as we are aware, a first for the Brand Management team was an enquiry from the Apache Spark project whether or not they were allowed to use a variant of their logo for Pride. The Brand Management was happily to confirm that there were no concerns and that the project was free to go ahead with their plans.

Registrations --we have submitted a number of registrations and responded to requests for additional input on a number of ongoing registartions this quarter. We have not had any registrations complete this quarter although we are working on a numberof transfer agreements for podlings that have existing registrations and are nearing graduation.

Renewals fell due for two registrations this quarter. In consultation with the project communities it was decided, in both cases, to allow the registartion to lapse as the renewals were not viewed as cost-effective.

We have been made aware this quarter of a number of external registration applications made this quarter that overlap with registrations of our own. We are working with counsel to request adjustments to these registrations to avoid the overlap.

Infringements --potential infringements are brought to our attention from both internal and external sources. The majority of infringements we see are accidental and our project communities are able to resolve these quickly and informally with occasional input from the Brand Management team. A small number of issues take longer to resolve and we were pleased to see two such issues be successfully resolved this quarter.

And finally… The Brand Management team welcomes your comments and suggestions as well as any questions you might have. Please see https://www.apache.org/foundation/marks/contact for our contact details.


> Infrastructure:
 This past quarter, the Infrastructure team and its volunteers have spent considerable effort updating our shared services. We have performed a number of version upgrades, and have acquired and moved to new servers better-tuned to their workload.

Two of the most useful tools for our projects are the Jira issue tracker and the Confluence wiki system. We took a couple weekends to upgrade these to their latest versions, along with the numerous plugins these systems use to provide additional capabilities. Additionally, we performed an emergency upgrade for security purposes.

On the continuous integration front, we maintain several buildbot nodes, and a large deployment of Jenkins build nodes. Each of these were upgraded during the quarter to pick up new features, better reliability, and tighter security. The "Jenkins Master" was running on a shared server within a virtual machine. This created a strain on the underlying disks, so we migrated to a new, dedicated with much higher-performance disks. The Jenkins build system is one of our most-used services, and we continue to monitor its performance closely.

The Apache mirror system is a large network of volunteers that offer additional download points for the large catalog of Apache releases. It has been in operation for almost twenty years, and continues to grow in scope and in reliability. Similar to our Jenkins master, our distribution point was running into contention issues with other services on its machine. As a result, we have moved our distribution to a dedicated box, providing a much more reliable system for the mirror system and to release disk contention from the shared services.

That shared service is what we call our "Top Level Project" (TLP) web server, providing the web sites for the vast majority of our projects' web sites. By moving the mirror system off our primary web servers, it greatly improved its performance. We also migrated a secondary TLP server from our old ASF-owned hardware to a new cloud provider, and are testing and monitoring that new deployment.

Building upon our monitoring changes from last quarter, we have moved our status.apache.org server over to Statuspage.io for better reliability, maintability, and features. Much of our monitoring framework already had integrations, making this transition easy for all involved.

> Financial Statement:



> Fundraising:
 As we head towards the 20th anniversary of the foundation, we welcome Daniel Ruggeri as a co-VP of Fundraising. We are also proud to be working on three Apache events for 2018: ApacheCon 2018 North America in Montreal in September, the Apache 2018 EU Roadshow in Berlin in June and the Apache 2018 US Roadshow in Washington, DC in December. ApacheCon NA 2018 is effectively sold out for sponsors and we have a number of sponsors highly interested in AC2019 NA as well as AC2019 EU.

Interested in sponsoring the foundation and/or our events? Please email kmcgrail@apache.org for more details.

Fundraising continues to go well. We are able to fund operations and working on an endowment project to ensure the longevity of the organization. Fundraising Committee meetings continue to occur monthly and we are always looking for help. Continue improving our fundraising procedures and working on our playbook website. And we continue groundwork on fundraising for an OSS event in Africa.

The ASF foundation relies on our sponsors to exist. We are not a trade organization but a 100% volunteer led charity. Donations are tax-deductible to the extent permitted by law. To our generous Sponsors, thank you, thank you, thank you.

# # #

Report prepared by Sally Khudairi, Vice President Marketing & Publicity, with contributions by Rich Bowen, Vice President Conferences; Gavin McDonald, Vice President Travel Assistance Committee; Sharan Foga, Vice President Community Development; Mark Thomas, Vice President Brand Management; David Nalley, Vice President Infrastructure; Greg Stein, ASF Infrastructure Administrator; Tom Pappas, Vice President Finance; and Daniel Ruggeri and Kevin McGrail, Vice Presidents Fundraising.

For more information, subscribe to the announce@apache.org mailing list and visit http://www.apache.org/, the ASF Blog at http://blogs.apache.org/, the @TheASF on Twitter, and https://www.linkedin.com/company/the-apache-software-foundation.

(c) The Apache Software Foundation 2018.

Friday September 14, 2018

The Apache News Round-up: week ending 14 September 2018

And a happy Friday to you all. Let's review what's up in Apache Land from the last week:

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 19 September. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series, now in its 20th year.
 - 24-27 September: T-10 days to Montreal. 100+ Apache project and community sessions, from CloudStack to Spark to Tomcat to Geospatial to Hackathon, BarCamp, and more. Join us! http://apachecon.com/acna18/
 - Guest Post: looking forward to learning more about the wide array of projects in the Apache fold at ApacheCon https://s.apache.org/RkWd
 - 4 December: Apache Roadshow DC and Open Source Job Fair. CFP open through 15 October http://www.apachecon.com/usroadshow18/

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield snazzy performance at 99.15% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 494 Apache contributors changed 723,907 lines of code over 2,515 commits. Top 5 contributors, in order, are: Andrea Cosentino, Shaofeng Shi, Mark Thomas, Shawn McKinney, and Carlos Sanchez Gonzalez.

Apache Commons™ Weaver –an easy way to enhance compiled Java classes by generating ("weaving") bytecode into those classes.
 - Apache Commons Weaver 2.0 released https://commons.apache.org/

Apache Directory™ Fortress –a computer security access management facility written in Java. 
 - Apache Fortress 2.0.2 released http://directory.apache.org/

Apache Jackrabbit™ –a scalable, high-performance hierarchical content repository designed for use as the foundation of modern world-class Web sites and other demanding content applications.
 - Apache Jackrabbit Oak 1.2.30 released http://jackrabbit.apache.org/

Apache Kylin™ –an Open Source Distributed Analytics Engine designed to provide SQL interface and multi-dimensional analysis (OLAP) on Apache Hadoop, supporting extremely large datasets.
 - Apache Kylin 2.4.1 released https://kylin.apache.org/

Apache MyFaces™ –a JavaServer Faces 2.3 implementation as specified by JSR-372.
 - MyFaces Core v2.3.2 released http://myfaces.apache.org/

Apache POI™ –a library for reading and writing Microsoft Office file formats, such as Excel, PowerPoint, Word, Visio, Publisher and Outlook.
 - Apache POI 4.0.0 released https://poi.apache.org/

Apache Qpid™ –implements the latest AMQP specification, the first open standard for enterprise messaging.
 - Apache Qpid Proton 0.25.0 released https://qpid.apache.org/

Apache SystemML™ –a machine learning platform optimal for Big Data.
 - Apache SystemML 1.2.0 released http://systemml.apache.org/

Apache Tomcat™ –an Open Source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and JASPIC technologies.
- Apache Tomcat 8.5.34 and 9.0.12 released https://tomcat.apache.org/

Did You Know?

 - Did you know that, for the second consecutive year, Apache Flink has been awarded the Datanami Editors' Choice Award for "Top 5 Open Source Projects to Watch"? https://flink.apache.org/

- Did you know that, according to TheServerSide, Apache Maven is still one of the industry's most popular Java build tools? http://maven.apache.org/

 - Did you know that Lyft uses Apache Airflow (incubating), Hive, and Kafka as part of its data platform architecture? http://airflow.apache.org/ , http://hive.apache.org/ , http://kafka.apache.org/

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - The Apache Spark community will be presenting at In-Memory Computing Summit North America 2-3 October in San Francicso https://www.imcsummit.org/2018/us/

 - The Apache Big Data community will be at DataWorks Summit 18-21 March 2019 in Barcelona and 20-23 May 2019 in Washington DC https://dataworkssummit.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # # 

Friday September 07, 2018

The Apache News Round-up: week ending 7 September 2018

Welcome, September. Here's what the Apache community has been working on over the past week:

Success at Apache –a monthly blog series that focuses on the processes behind why the ASF "just works".
 - 赢在 Apache: If it helps others, all the better. by Sally Khudairi https://s.apache.org/Et2y

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 19 September. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series, now in its 20th year.
 - 24-27 September: T-17 days to Montreal. Don't miss 100+ Apache project and community sessions, from CloudStack to Spark to Tomcat to Geospatial to Hackathon, BarCamp, and more. Join us! http://apachecon.com/acna18/
 - NEW DATE: 4 December: Apache Roadshow DC and Open Source Job Fair. CFP open through 15 October http://www.apachecon.com/usroadshow18/

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield snazzy performance at 99.43% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 313 Apache contributors changed 391,173 lines of code over 1,733 commits. Top 5 contributors, in order, are: Harbs, Andrea Cosentino, Raphael Luta, Jonathan Hung, and Carlos Sanchez Gonzalez.

Apache BookKeeper™ –a reliable replicated log service.
 - Apache BookKeeper 4.7.2 released https://bookkeeper.apache.org/

Apache Daffodil (incubating) –an implementation of the Data Format Description Language (DFDL) used to convert between fixed format data and XML/JSON.
 - Apache Daffodil (incubating) 2.2.0 released https://daffodil.apache.org/

Apache Directory™ –provides directory solutions entirely written in Java.
 - Apache Directory LDAP API 2.0.0.AM2 released http://directory.apache.org/

Apache HBase™ –the Hadoop database; a distributed, scalable, Big Data store.
 - Apache HBase 2.0.2 released http://hbase.apache.org

Apache Jackrabbit™ –a scalable, high-performance hierarchical content repository designed for use as the foundation of modern world-class Web sites and other demanding content applications.
 - Apache Jackrabbit 2.14.6 and Jackrabbit Oak 1.8.7 and 1.9.8 released http://jackrabbit.apache.org/

Apache JSPWiki™ –a feature-rich and extensible WikiWiki engine built around the standard JEE components (Java, servlets, JSP).
 - Apache JSPWiki 2.10.5 released https://jspwiki-wiki.apache.org/

Apache OpenMeetings™ –provides video conferencing, instant messaging, white board, collaborative document editing and other groupware tools.
 - Apache OpenMeetings 4.0.5 is released http://openmeetings.apache.org

Apache OpenWebBeans™ –an ALv2-licensed implementation of the "Contexts and Dependency Injection for the Java EE platform" specification which is defined as JSR-299.
 - Apache OpenWebBeans-2.0.7 CDI container released http://openwebbeans.apache.org

Apache Qpid™ –implements the latest AMQP specification, the first open standard for enterprise messaging.
 - Apache Qpid for Java 6.1.7 released https://qpid.apache.org/

Apache SystemML™ –a machine learning platform optimal for Big Data.
 - Apache SystemML 1.2.0 released http://systemml.apache.org/

Apache Tomcat™ Connectors –an Open Source implementation of the Java Servlet, JavaServer Pages, Java Expression Language and Java WebSocket technologies.
- Apache Tomcat Connectors 1.2.44 released https://tomcat.apache.org/

Did You Know?

 - Did you know that the following Apache projects are celebrating anniversaries this month? Apache ServiceMix (11 years); Hive, Pig, and Shiro (8 years); Airavata, Bigtop, SIS, and Stanbol (6 years); Curator (5 years); Storm (4 years); Yetus (3 years); DRAT, RocketMQ, and Royale (2 years). Many happy returns! https://projects.apache.org/committees.html?date

 - Did you know that during FY2018 ASF project contributors have added $624,946,835 worth of code? https://blogs.apache.org/foundation/entry/the-apache-software-foundation-announces37

 - Did you know that Lufthansa uses Apache Wicket for its pre-flight eShop? http://wicket.apache.org/

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - Catch members of the Apache community at Solutions Hamburg 12-14 September in Hamburg --stop by the Apache booth and say hello! https://solutions.hamburg/

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - The Apache Spark community will be presenting at In-Memory Computing Summit North America 2-3 October in San Francicso https://www.imcsummit.org/2018/us/

 - The Apache Big Data community will be at DataWorks Summit 18-21 March 2019 in Barcelona and 20-23 May 2019 in Washington DC https://dataworkssummit.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # # 

Wednesday September 05, 2018

Success at Apache — 赢在 Apache: If it helps others, all the better.

by Sally Khudairi, with contributions by Ignasi Barrera, Von Gosling, Luke Han, Kevin A. McGrail, and Anthony Shaw. Translations by Ted Liu and David Zhenwei Dong.

I became active in The Apache Software Foundation at its inception in 1999. I am responsible for elevating the ASF's visibility, and supporting the Foundation by counseling 350+ Apache projects and their communities in the areas of messaging, outreach, and engagement.

As a global, virtual, and diverse community, the ASF relies on countless Apache Members, Committers, and Contributors to help share our values and explain our processes with others. We have grown from a single project to hundreds of projects and communities https://projects.apache.org/committees.html?date through "The Apache Way": an inclusive process and judicious reinforcement of "Community Over Code". 

We launched the "Success at Apache" blog series following the Media & Analyst Training at ApacheCon Seville in 2016. I asked ASF Board Member and VP Brand Management Mark Thomas his opinion on what he thinks are some of the reasons that the ASF "just works". His immediate response was: "project independence". I asked if he'd put that in writing —in his own words— as our community members' personal experiences help others see The Apache Way through their unique perspectives. Shortly afterwards, we published "Project Independence" https://blogs.apache.org/foundation/entry/success_at_apache_project_independence and "Success at Apache" was born https://blogs.apache.org/foundation/feed/entries/atom?cat=SuccessAtApache

Whilst English is the ASF's official language, localization often helps foster understanding,  encourage adoption, and onboard new contributors more quickly. A while back, ASF Member Ted Liu told me that he and some of his coworkers had translated a handful of our "Success at Apache" blog posts into Mandarin Chinese. He asked if it would be useful to us.

Why yes, of course: new approaches to promote and propagate The Apache Way are always appreciated.

. . . 

赢在 Apache

- Meritocracy, by Kevin A. McGrail, Vice President of ASF Fundraising. Translation by David Zhenwei Dong.

- Lowering Barriers to Open Innovation, by Luke Han, Vice President of Apache Kylin. Translation by David Zhenwei Dong.

- Scratch Your Own Itch, by Ignasi Barrera, a member of the Apache jclouds PMC. Translation by Ted Liu.

- Contributing to Open Source Even with a High-pressure Job, by Anthony Shaw, contributor to over 20 Open Source projects, including Apache Libcloud. Translation by Ted Liu.

- Open Innovation from a Non-native English Country, by Von Gosling, original co-founder of Apache RocketMQ. Translation by Ted Liu.

. . .

Ted's action reflects one of our greatest successes at Apache: the mindset of "If this is helpful to me, that's good (= "scratch your own itch"). If it helps others, all the better." 

After all, we didn't become the world's largest Open Source foundation by not being helpful. There's always something needing to be done in an all-volunteer community: if you'd like to help the ASF, we will happily accept your assistance where possible. Plus, helping others feels pretty great.

Whether contributing code and writing documentation http://apache.org/foundation/getinvolved.html , mentoring community members http://community.apache.org/ , supporting the ASF through an individual donation or corporate sponsorship http://apache.org/foundation/contributing.html , or serving in myriad other ways https://helpwanted.apache.org/ , we thank you.

For an immersive, rewarding experience with dozens of Apache projects and hundreds of user and developer community members, consider joining us at ApacheCon in Montreal 24-27 September 2018 http://apachecon.com/ . This year's event is extra special, as we're celebrating the 20th Anniversary of ApacheCon —huzzah! All are welcome https://blogs.apache.org/comdev/entry/my-first-experience-of-apachecon

We look forward to seeing you there and sharing your Success at Apache.


Sally Khudairi is Vice President of Marketing & Publicity at The Apache Software Foundation (ASF) where, in 2002, she was elected its first female and non-technical Member. Over her 25-year career in the Web, Khudairi has been lauded as a dynamic communications strategist and expert in next-generation innovations, and has played an integral role in building campaigns for some of the industry’s most prominent standards and organizations. Prior to launching the ASF in 1999, Khudairi was deputy to Sir Tim Berners-Lee as Head of Communications at the World Wide Web Consortium (W3C), overseeing the launch of 17 specifications that include PNG, CSS, HTML4 and XML. She is Managing Director/Luxury & Technology Practice lead at HALO Worldwide and Founder/Chief Marketing Officer at OptDyn.

= = =

"Success at Apache" is a monthly blog series that focuses on the processes behind why the ASF "just works" https://blogs.apache.org/foundation/category/SuccessAtApache

Friday August 31, 2018

The Apache News Round-up: week ending 31 August 2018

So long, August. Let's wrap up the month with a look back at our activities over the past week:

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 19 September. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series, now in its 20th year.
 - 24-27 September: T-24 days to Montreal. Don't miss 100+ Apache project and community sessions, from CloudStack to Spark to Tomcat to Geospatial to Hackathon, BarCamp, and more. Join us! http://apachecon.com/acna18/

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield bouncy performance at 96.12% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 288 Apache contributors changed 444,400 lines of code over 1,613 commits. Top 5 contributors, in order, are: Sijie Guo, Tellier Benoit, Kevin A. McGrail, Shawn McKinney, and Carlos Sanchez Gonzalez.

Apache Drill™ –an Apache Open Source SQL query engine for Big Data exploration.
 - Apache Drill 1.14.0 released https://drill.apache.org/

Apache HttpComponents™ Core –a set of HTTP/1.1 and HTTP/2 transport components that can be used to build custom client and server side HTTP services with a minimal footprint.
 - HttpComponents Core 5.0 beta3 released http://hc.apache.org/

Apache SystemML™ –a machine learning platform optimal for Big Data.
 - Apache SystemML 1.2.0 released http://systemml.apache.org/

Apache XMLBeans™ –a tool that allows access to the full power of XML in a Java friendly way.
- Apache XMLBeans 3.0.1 released https://xmlbeans.apache.org

Did You Know?

 - Did you know that since Apache Groovy was first announced 15 years ago, the project has had 160+ releases, 320+ contributors and 100M+ downloads? http://groovy.apache.org/

 - Did you know that the CFPs for DataWorks Summit (18-21 March 2019/Barcelona and 20-23 May 2019/Washington DC) closes 14 September? https://dataworkssummit.com/

 - Did you know that Chick-fil-A uses Apache MXNet (incubating) vision models to alert when their fries sit for too long? http://mxnet.apache.org/

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - Catch members of the Apache community at Solutions Hamburg 12-14 September in Hamburg --stop by the Apache booth and say hello! https://solutions.hamburg/

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - The Apache Spark community will be presenting at In-Memory Computing Summit North America 2-3 October in San Francicso https://www.imcsummit.org/2018/us/

 - The Apache Big Data community will be at DataWorks Summit 18-21 March 2019 in Barcelona and 20-23 May 2019 in Washington DC https://dataworkssummit.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # #

Friday August 24, 2018

The Apache News Round-up: week ending 24 August 2018

** this post is our 500th "Foundation" entry on blogs.apache.org ... shout-outs, emojis, and ascii art welcome <g> **

Hello, hello! It's time for our Friday review of our activities over the past week:

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 19 September. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series, now in its 20th year.
 - 24-27 September: T-31 days to Montreal --100+ sessions of Apache project and community-driven goodness. Have you registered yet? http://apachecon.com/acna18/

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield fab performance at 98.85% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 389 Apache contributors changed 647,196 lines of code over 2,206 commits. Top 5 contributors, in order, are: Bridget Bevens, Andrea Cosentino, Willem Jiang, Peng Hui Jiang, and Kevin A. McGrail.

Apache Cayenne™ –a powerful, full-featured, Open Source framework created for developers working with relational databases.
 - Apache Cayenne 4.0 final released https://cayenne.apache.org/

Apache Commons™ Lang –a package of Java utility classes for the classes that are in java.lang's hierarchy, or are considered to be so standard as to justify existence in java.lang.
 - Apache Commons Lang 3.8 released http://commons.apache.org/

Apache Directory™ –an extensible and embeddable directory server entirely written in Java, and certified LDAPv3 compatible by The Open Group.
 - Apache DS 2.0.0.AM25 released http://directory.apache.org/

Apache Flink™ –an Open Source stream processing framework for distributed, high-performing, always-available, and accurate data streaming applications.
 - Apache Flink 1.5.3 released https://flink.apache.org/

Apache HAWQ® –advanced Big Data query engine and analytic database in use at Alibaba, Haier, VMWare, ZTESoft, and hundreds more.
 - The Apache Software Foundation Announces Apache® HAWQ® as a Top-Level Project https://s.apache.org/V43L

Apache Qpid™ –implements the latest AMQP specification, the first open standard for enterprise messaging, and provides transaction management, queuing, distribution, security, management, clustering, federation and heterogeneous multi-platform support and a lot more.
 - Apache Qpid JMS AMQP 0-x 6.3.3 and Qpid JMS 0.36.0 released http://qpid.apache.org/

Apache Struts™ –an elegant, extensible framework for creating enterprise-ready Java Web applications.
 - Apache Struts 2.3.35 GA with Security Fixes and 2.5.17 GA with Security Fixes released http://struts.apache.org
 - CVE-2018-11776 Apache Struts 2.3 to 2.3.34 and 2.5 to 2.5.16 http://mail-archives.apache.org/mod_mbox/www-announce/201808.mbox/%3CDB5PR08MB10623BF00ACDCA92BF685C63AF300%40DB5PR08MB1062.eurprd08.prod.outlook.com%3E

Apache Syncope™ –an Open Source system for managing digital identities in enterprise environments, implemented in Java EE technology.
 - Apache Syncope 2.0.10 and 2.1.1 released http://syncope.apache.org/

Apache Tomcat™ –an Open Source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and Java Authentication Service Provider Interface for Containers technologies.
 - Apache Tomcat 8.5.33 and 9.0.11 released http://tomcat.apache.org/

Did You Know?

 - Did you know that the Girl Scouts of the Green and White Mountains (New Hampshire and Vermont)'s STEM program on 22 September teaches girls how to code different Java programs and games using Apache NetBeans (incubating)? http://bit.ly/2N3xGdx

 - Did you know that the CFP for MesosCon (5-7 November/NYC) is now open through 27 August? http://mesoscon2018.org

 - Did you know that Chick-fil-A uses Apache MXNet (incubating) vision models to alert when their fries sit for too long? http://mxnet.apache.org/

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # #

Thursday August 23, 2018

The Apache Software Foundation Announces Apache® HAWQ® as a Top-Level Project

Advanced Big Data query engine and analytic database in use at Alibaba, Haier, VMWare, ZTESoft, and hundreds more.

Wakefield, MA —23 August 2018— The Apache Software Foundation (ASF), the all-volunteer developers, stewards, and incubators of more than 350 Open Source projects and initiatives, announced today Apache® HAWQ® as a Top-Level Project (TLP).

Apache HAWQ is an advanced enterprise SQL-on-Hadoop query engine and analytic database. It combines the key technological advantages of MPP database with the scalability and convenience of Apache Hadoop. HAWQ reads data from and writes data to HDFS natively, delivers industry-leading performance and linear scalability, and provides users with a complete, standards compliant SQL interface.

"We are very excited to see Apache HAWQ graduate as a Top-Level Project and we would like to thank our Incubation mentors for all their help," said Dr. Lei Chang, Vice President of Apache HAWQ. "This is a huge milestone that reflects the collective contributions from the growing global community to deliver a world-class SQL engine for analytics."

HAWQ operates natively in Apache Hadoop to provide users the tools to confidently and successfully interact with petabyte-range data sets. Features include:
  • Exceptional performance: parallel processing architecture delivers high performance throughput and low latency —potentially near real time— query responses that can scale to petabyte-sized datasets;
  • Robust ANSI SQL compliance: leverage familiar skills. Achieve higher levels of compatibility for SQL-based applications and BI/data visualization tools. Execute complex queries and joins, including roll-ups and nested queries; and 
  • Apache Hadoop ecosystem integration: integrate and manage with Apache YARN. Provision with Apache Ambari. Interface with Apache HCatalog. Supports Apache Parquet, Apache HBase, and others. Easily scales nodes up or down to meet performance or capacity requirements.

Apache HAWQ is in use at Alibaba, Haier, VMware, ZTESoft, and hundreds of users around the world.

"We admire Apache HAWQ's flexible framework and ability to scale up in a Cloud ecosystem. HAWQ helps those seeking a heterogeneous computing system to handle ad-hoc queries and heavy batch workloads," said Kuien Liu, Computing Platform Architect at Alibaba. "Alibaba encourages more and more engineers to continue to embrace Open Source, and Apache HAWQ stands out as a star project. We are proud to have been collaborating with this community since 2015."

"Haier Group has deployed clusters of more than 30 nodes in the production environment from the very beginning of HAWQ," said Xiaoliang Wu, Big Data Architect at Haier. "We use HAWQ as an ad-hoc query and batch computation engine in areas such as social network services and IOT. Because of its superior scalability and stability, HAWQ greatly improves development efficiency and reduces operation and maintenance costs. We believe that Apache HAWQ is a very competitive product in the SQL-On-Hadoop field."

"We have been using Apache HAWQ at VMware for 4 years now," said Dominie Jacob, Lead Big Data Engineer at VMware Inc. "It is easy to manage and scale using Apache Ambari, and easy to provision and attach more nodes based on demand. Being virtualized, it is easy to provision and attach more nodes based on demand. In our BI Big Data world, HAWQ is the primary database for accessing the Hadoop datasets, building models, and executing predictive model workflows. HAWQ is working seamlessly with billions of records, thousands of Tables/Functions/Tableau-Reports, and hundreds of users. The demand for HAWQ is increasing. As VMware always encourages us to pick up and contribute back to Open Source technologies, we would love to collaborate with this community and see more enhancements. In our BI space, HAWQ is one of the top priorities."

"Apache HAWQ is an attractive technology for Big Data applications," said Zixu Zhao, Architect at ZTESoft. "HAWQ serves as the foundation of our Big Data platform and it has been used in a lot of applications, such as interactive analytics and BI on telecom data. We congratulate HAWQ on becoming an Apache Top-Level Project."

"Becoming an Apache Top-Level Project is an important milestone," added Chang. "There is much work ahead of us, and we look forward to growing the HAWQ community and codebase."

Catch Apache HAWQ in action at ApacheCon North America 24-27 September 2018 http://apachecon.com/acna18/ .

Availability and Oversight

Apache HAWQ software is released under the Apache License v2.0 and is overseen by a self-selected team of active contributors to the project. A Project Management Committee (PMC) guides the Project's day-to-day operations, including community development and product releases. For downloads, documentation, and ways to become involved with Apache HAWQ, visit http://hawq.apache.org/ and https://twitter.com/ApacheHAWQ .

About The Apache Software Foundation (ASF)
Established in 1999, the all-volunteer Foundation oversees more than 350 leading Open Source projects, including Apache HTTP Server --the world's most popular Web server software. Through the ASF's meritocratic process known as "The Apache Way," more than 730 individual Members and 6,800 Committers across six continents successfully collaborate to develop freely available enterprise-grade software, benefiting millions of users worldwide: thousands of software solutions are distributed under the Apache License; and the community actively participates in ASF mailing lists, mentoring initiatives, and ApacheCon, the Foundation's official user conference, trainings, and expo. The ASF is a US 501(c)(3) charitable organization, funded by individual donations and corporate sponsors including Aetna, Anonymous, ARM, Bloomberg, Budget Direct, Capital One, Cerner, Cloudera, Comcast, Facebook, Google, Hortonworks, Huawei, IBM, Indeed, Inspur, LeaseWeb, Microsoft, Oath, ODPi, Pineapple Fund, Pivotal, Private Internet Access, Red Hat, Target, and Union Investment. For more information, visit http://apache.org/ and https://twitter.com/TheASF


© The Apache Software Foundation. "Apache", "HAWQ", "Apache HAWQ", "Ambari", "Apache Ambari", "Hadoop", "Apache Hadoop", "HBase", "Apache HBase", "HCatalog", "Apache HCatalog", "Parquet", "Apache Parquet", "YARN", "Apache YARN", and "ApacheCon" are registered trademarks or trademarks of the Apache Software Foundation in the United States and/or other countries. All other brands and trademarks are the property of their respective owners.

# # #

Friday August 17, 2018

The Apache News Round-up: week ending 17 August 2018

Happy Friday from the Apache community! Let's delve into what's happened over the past week:

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 19 September. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series, now in its 20th year.
 - 24-27 September: we look forward to seeing you in Montreal. 100+ Apache community-driven sessions: register today http://apachecon.com/acna18/

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield superb performance at 98.54% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 418 Apache contributors changed 760,843 lines of code over 2,533 commits. Top 5 contributors, in order, are: Gary Gregory, Benjamin Mahler, Uma Maheswara Rao G, Stephen Mallette, and Jeff Elsloo.

Apache Commons™ Compress –defines an API for working with compression and archive formats.
 - Apache Commons Compress 1.18 released http://commons.apache.org/
 - [CVE-2018-11771] Apache Commons Compress 1.7 to 1.17 denial of service vulnerability http://mail-archives.apache.org/mod_mbox/www-announce/201808.mbox/%3C87in4apjvv.fsf%40v45346.1blu.de%3E

Apache Commons™ RNG –library that provides a collection of implementations of random numbers generators.
 - Apache Commons RNG 1.1 released http://commons.apache.org/

Apache Groovy™ –a multi-faceted language for the Java platform.
 - Apache Groovy 2.5.2 released https://groovy.apache.org/

Apache Olingo™ –a Java library that enables developers to implement OData service providers (server) and consumers (clients) for OData V2 and V4.
 - Apache Olingo 4.5.0 released https://olingo.apache.org/

Apache Qpid™ –a messaging library for the Advanced Message Queuing Protocol 1.0 (AMQP 1.0, ISO/IEC 19464, http://www.amqp.org).
 - Apache Qpid Proton-J 0.29.0 released http://qpid.apache.org/

Did You Know?

 - Did you know that the Apache Incubator is the entry path for projects/codebases wishing to become part of the efforts at The Apache Software Foundation? Mentorship ensures code donations align with ASF legal standards and project communities are developed "The Apache Way". http://incubator.apache.org/

 - Did you know that the Apache Community will be participating in HackTheAlps? Registration closes 19 August; sign up today. https://www.hackthealps.it/

 - Did you know that the ASF offsets its day-to-day operating expenses through the generous contributions of individual donors and corporate Sponsors? http://apache.org/foundation/contributing.html

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # #

Friday August 10, 2018

The Apache News Round-up: week ending 10 August 2018

Another lovely week draws to a close. Here's what the Apache community has been up to:

Success at Apache –a monthly blog series that focuses on the processes behind why the ASF "just works".
 - The Apache Legal Shield - A Pragmatic View, by Bertrand Delacrétaz https://s.apache.org/tmi6

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 15 August. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series. Celebrating 20 years of community-led programming.
 - 24-27 September: Join us in Montreal! Discounted hotel room rates are filling quickly --register today http://apachecon.com/acna18/
 - 8 October: Apache Roadshow and Open Source Job Fair/Fairfax, VA --Save The Date!

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield really nice performance at 97.66% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 399 Apache contributors changed 786,435 lines of code over 2,144 commits. Top 5 contributors, in order, are: Jean-Baptiste Onofré, Stephen Mallette, Wes McKinney, Oleg Kalnichevski, and Clebert Suconic.

Apache Commons™ Configuration –software library that provides a generic configuration interface which enables an application to read configuration data from a variety of sources.
 - Apache Commons Configuration 2.3 released http://commons.apache.org/

Apache CouchDB™ –easy to use, Open Source database software with a scalable architecture. 
 - Apache CouchDB 2.2.0 released https://couchdb.apache.org/

Apache Flink™ –an Open Source stream processing framework for distributed, high-performing, always-available, and accurate data streaming applications.
 - Apache Flink 1.6.0 released https://flink.apache.org/

Apache Jackrabbit™ Oak –a scalable, high-performance hierarchical content repository designed for use as the foundation of modern world-class Web sites and other demanding content applications.
 - Apache Jackrabbit 2.16.3 and Jackrabbit Oak 1.8.6 released http://jackrabbit.apache.org/

Apache Kafka™ –distributed, fault tolerant, publish-subscribe messaging.
 - Apache Kafka 2.0.0 released https://kafka.apache.org/

Apache Pulsar (incubating) –a highly scalable, low latency messaging streaming platform running on commodity hardware.
 - Apache Pulsar 2.1.0-incubating released https://pulsar.incubator.apache.org/

Apache Qpid™ Proton –a messaging library for the Advanced Message Queuing Protocol 1.0.
 - Apache Qpid Proton-J 0.27.3 and 0.28.1 released http://qpid.apache.org/

Apache ServiceComb (incubating) –a Restful based service-registry that provides micro-services discovery and micro-service management.
 - Apache ServiceComb Service-Center 1.0.0 and ServiceComb Java-Chassis version 1.0.0 released http://servicecomb.incubator.apache.org/

Apache Tomcat™ –an Open Source implementation of the Java Servlet, JavaServer Pages, Java Expression Language and Java WebSocket technologies.
 - CVE-2018-8037 Apache Tomcat - Information Disclosure http://mail-archives.apache.org/mod_mbox/www-announce/201808.mbox/%3C0c616b4d-4e81-e7f8-b81d-1bb4c575aa33%40apache.org%3E

Apache Traffic Server™ – a high-performance Web proxy cache that improves network efficiency and performance by caching frequently-accessed information at the edge of the network.
 - Apache Traffic Server 6.2.3 and 7.1.4 released http://trafficserver.apache.org/


Did You Know?

 - Did you know that Apache Community Development publish a monthly blog? Catch up on all their activities at https://blogs.apache.org/comdev/entry/community-development-news-july-2018

 - Did you know that you can easily help promote ApacheCon? http://www.apachecon.com/acna18/banners/

 - Did you know that Thomas Cook Group subsidiary Club18-30.com and Ghent University use Apache Wicket? http://wicket.apache.org/

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - Save the Date: Apache Roadshow DC and Open Source/Government/Cyber/Job Fair - 8 October 2018 in Fairfax, VA http://apachecon.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # #

Tuesday August 07, 2018

Success at Apache: the Apache Legal Shield - a pragmatic view

by Bertrand Delacretaz

I became active in the ASF in 2001 via Gianugo Rabellino -- he was the one who started the discussions with Apache Fop about me donating the jfor XLS-FO to RTF converter that I had developed earlier. It was already too late to uninvent RTF which is a terrible format, but I digress. I am currently a member of the Board of Directors of the ASF and have been doing a lot of thinking (and presentations) about what makes the ASF tick in terms of collaboration and Shared Neurons.

Section 12.1 of the Apache Bylaws https://www.apache.org/foundation/bylaws describes the legal protection that the Apache Software Foundation provides to our directors, officers and members.

I'm not a lawyer by far, however, and that language is a bit hard for me to parse, so I thought I'd try to clarify what this means for our contributors and learn more about it in the process.

If you go into detail there's certainly more to it but I think the items below are the absolute basics that every PMC member https://www.apache.org/foundation/how-it-works.html should understand in order to benefit from the legal shield that the Foundation provides.

What is a "Legal Shield" ?

An important goal of the Apache Bylaws and policies is to isolate our contributors from any legal action that might be taken against the Foundation, if they act as specified in those policies.

That's what we mean by "legal shield": a way for our individual volunters to be sheltered from legal suits directed at the Foundation's projects, as mentioned in our "How the ASF works" document https://www.apache.org/foundation/how-it-works.html .

Acts of the Foundation

The first thing is to make sure our software releases are "Acts of the Foundation" as opposed to something that people do in their own name. This is natural if we follow our release policy https://www.apache.org/legal/release-policy.html , which defines a simple release approval process for releasing source code that makes the project's PMC https://www.apache.org/foundation/how-it-works.html responsible for the release, as opposed to our individual contributors and release managers.

This means that if the released software is ever involved in legal action and someone has to testify or produce information as part of a subpoena, or worse, it's the Foundation which is in charge of that and not our individual contributors. These things happen from time to time, not very often but they can represent a lot of work and aggravation that none of us are looking for. The 2011 subpoena to Apache around Java and Android http://www.groklaw.net/articlebasic.php?story=20110509221136468 is just one example of that. Produce documents reflecting all communications between someone and Apache, how fun is that?

The goal of our release process is to make it very clear what an Apache Release is, and also clarify that anyone using our software in other ways, by getting it directly from our code repositories for example, does so at their own risk. If it's not an Apache Release we didn't give it to them, they grabbed it on their own initiative and have to accept the consequences of that.

The Rest is for Contributors

This leads to a second and related item: developer builds, which happen much more often than releases, often daily, and that people can easily download and use.

Those builds are meant for contributors to our projects, to use in development and testing as part of their contribution activities.

To avoid any confusion, it is important to clearly label them as such, and to draw a clear line between them and official Apache Releases. They should only be advertised in places where developers who are part of our communities (as opposed to the general public) can see them, and with suitable disclaimers.

In our world of continuous deployment and automated builds, the lines between what's a release and what's just tagged code that works for someone are often blurred. That's totally fine from a technical point of view, and often desirable when one wants to move fast, but we shouldn't forget about the possible legal implications ot distributing software.

Let's make sure we take advantage of the well-designed Apache Legal Shield that the Foundation provides to us, by strictly following our release policy and clearly specifying what is what in terms of downloadable software.

I never thought I'd write a blog post on a legal topic, so here's the FUN DISCLAIMER: As mentioned, I am not a lawyer by far, and the above should not be considered legal advice - just a pragmatic view that can hopefully help our contributors better understand the related issues. For legal advice, consult your own legal advisor! And if you're thirsty after reading all this, get a drink and give a toast to the ASF and its founders!

Many thanks to the fellow Apache members who provided feedback and additional ideas for this post.

. . . 

Bertrand Delacretaz works as a Principal Scientist with the Adobe Research team in Basel, Switzerland. He spends a good portion of his time advocating and implementing Open Development as a way to make geographically dispersed teams more efficient and more fun for his coworkers. Bertrand is also an active Member of the Apache Software Foundation, currently on his tenth term on the Foundation's Board of Directors (Fiscal Year 2018-2019).

= = =

"Success at Apache" is a monthly blog series that focuses on the processes behind why the ASF "just works" https://blogs.apache.org/foundation/category/SuccessAtApache

Friday August 03, 2018

The Apache News Round-up: week ending 3 August 2018

Welcome, August! We hope you have had a great week. Let's take a peek at what the Apache community has been up to:

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 15 August. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series. Join us!
 - 24-27 September: Register for ApacheCon/Montreal today! Discounted sleeping room rates are available through 24 August, but are filling quickly http://apachecon.com/acna18/
     + event updates https://blogs.apache.org/conferences/entry/apachecon-north-america-2018-announcements
 - 8 October: Apache Roadshow and Open Source Job Fair/Fairfax, VA --Save The Date!
 - Media and Community Partner opportunities available for *all* official Apache events: drop us a note at press@apache.org to help.

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield hootin' performance at 96.35% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 843 Apache contributors changed 1,072,661 lines of code over 3,759 commits. Top 5 contributors, in order, are: Stephen Mallette, Masaori Koshiba, mxnet-ci, Gary Gregory, and Chris Brody.

Apache Flink™ –an Open Source stream processing framework for distributed, high-performing, always-available, and accurate data streaming applications.
 - Apache Flink 1.5.2 released https://flink.apache.org/

Apache Jackrabbit™ –a scalable, high-performance hierarchical content repository designed for use as the foundation of modern world-class Web sites and other demanding content applications.
 - Apache Jackrabbit 2.17.5 and Jackrabbit Oak 1.6.13 released http://jackrabbit.apache.org/

Apache Kafka™ –distributed, fault tolerant, publish-subscribe messaging.
 - Apache Kafka 2.0.0 released https://kafka.apache.org/

Apache Knox™ –a REST API gateway for interacting with Apache Hadoop clusters.
 - Apache Knox 1.1.0 released http://knox.apache.org/

Apache NetBeans (incubating) –a development environment, tooling platform and application framework.
 - Apache NetBeans 9.0 released https://netbeans.apache.org/


Did You Know?

 - Did you know that the following Apache projects are celebrating anniversaries this month? jUDDI (8 years); Any23, Lucene.Net, and Oozie (6 years); Ignite, Lens, Serf, and Usergrid (6 years) --many happy returns! https://projects.apache.org/committees.html?date

 - Did you know that you can easily help promote ApacheCon? http://www.apachecon.com/acna18/banners/

 - Did you know that Apache Cassandra, Kafka, Spark, and many others are holding community events this week? http://events.apache.org/event/meetups.html

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - Save the Date: Apache Roadshow DC and Open Source/Government/Cyber/Job Fair - 8 October 2018 in Fairfax, VA http://apachecon.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # #

Friday July 27, 2018

The Apache News Round-up: week ending 27 July 2018

Farewell, July! Let's check out the Apache community's activities from the past week:

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 15 August. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series. Join us!
 - 24-27 September: Registration for ApacheCon North America/Montreal is open http://apachecon.com/acna18/
 - 8 October: Apache Roadshow and Open Source Job Fair/Fairfax, VA --Save The Date!
 - Media and Community Partner opportunities available for *all* official Apache events: drop us a note at press@apache.org to help.

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield zippity performance at 93.91% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 506 Apache contributors changed 968,003 lines of code over 3,133 commits. Top 5 contributors, in order, are: Tellier Benoit, Karl Heinz Marbaise, Andrea Cosentino, Roberto Cortez, and Gary Gregory.

Apache Accumulo™ –a sorted, distributed key/value store that provides robust, scalable Big Data storage and retrieval.
 - Apache Accumulo 1.9.2 released https://accumulo.apache.org/

Apache Calcite™ –a framework for writing Big Data management systems.
 - Apache Calcite 1.17.0 released http://calcite.apache.org/

Apache Directory™ Fortress –computer security access management facility written in Java.
 - Apache Fortress 2.0.1 released https://directory.apache.org/fortress/

Apache HBase™ –Open Source, distributed, versioned, non-relational database.
 - Apache HBase 2.1.0 released https://hbase.apache.org/

Apache HttpComponents™ HttpAsyncClient–a library for client-side HTTP communication built on HttpCore.
 - HttpComponents HttpAsyncClient 4.1.4 GA released http://hc.apache.org/

Apache Kafka™ –distributed, fault tolerant, publish-subscribe messaging.
 - CVE-2017-12610: Authenticated Kafka clients may impersonate other users http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3CCAOJcB383nmC%2BpxBXoc2JcuD4TXgQrvgjCuovNavmt6sFs4%2BsBQ%40mail.gmail.com%3E
 - CVE-2018-1288: Authenticated Kafka clients may interfere with data replication http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3CCAOJcB3905-NRw3baEUGhEaqKipzQ%2BNryJHsK%3DAtF_aFFsF1nOA%40mail.gmail.com%3E

Apache OpenWhisk (incubating) –distributed serverless computing platform.
 - CVE-2018-11756 PHP Runtime for Apache OpenWhisk http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3CCAAC1_d4geVGr-%2BOk95Gq9C9P81BXUDT3d9N7-2r%2BqsiPrM5r3w%40mail.gmail.com%3E
 - CVE-2018-11757 Docker Skeleton Runtime for Apache OpenWhisk http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3CCAAC1_d7x6buq1aREekk_Eh9SjevQLPLkXc%2BaidiFBMcNz7GGwQ%40mail.gmail.com%3E

Apache Qpid™ –messaging tools that speak AMQP and support many languages and platforms.
 - Apache Qpid JMS 0.35.0 released http://qpid.apache.org/

Apache Tomcat™ –an Open Source implementation of the Java Servlet, JavaServer Pages, Java Expression Language and Java WebSocket technologies.
 - CVE-2018-8019 Apache Tomcat Native Connector - Mishandled OCSP invalid response http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3C20180721095943.GA24320%40minotaur.apache.org%3E
 - CVE-2018-8020 Apache Tomcat Native Connector - Mishandled OCSP responses can allow clients to authenticate with revoked certificates http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3C20180721101944.GA45239%40minotaur.apache.org%3E
 - CVE-2018-1336 Apache Tomcat - Denial of Service http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3C20180722090435.GA60759%40minotaur.apache.org%3E
 - CVE-2018-8037 Apache Tomcat - Information Disclosure http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3C20180722090623.GA92700%40minotaur.apache.org%3E
 - CVE-2018-8034 Apache Tomcat - Security Constraint Bypass http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3C20180722091057.GA70283%40minotaur.apache.org%3E


Did You Know?

 - Did you know that you can easily help promote ApacheCon? http://www.apachecon.com/acna18/banners/

 - Did you know that you can achieve Machine Learning on SQL by using Apache Hivemall (incubating) on Apache Hive or Apache Spark? http://hivemall.incubator.apache.org/

 - Did you know that the highest code contribution value during FY2018 was by Apache Mynewt? $61,769,063 worth of code! https://s.apache.org/FY2018AnnualReport

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://events.apache.org/event/meetups.html

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - Save the Date: Apache Roadshow DC and Open Source/Government/Cyber/Job Fair - 8 October 2018 in Fairfax, VA http://apachecon.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # #

Friday July 20, 2018

The Apache News Round-up: week ending 20 July 2018

Greetings, all. It's time to review the Apache community's activities from the past week:

Support Apache –help offset the ASF's day-to-day operating expenses and keep Apache software for everyone.
 - Consider an individual contribution or corporate sponsorship or matching gift program. Every dollar counts. http://apache.org/foundation/contributing.html

ASF Board –management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 15 August. Board calendar and minutes http://apache.org/foundation/board/calendar.html

ApacheCon™ –the ASF's official global conference series. Join us!
 - 24-27 September: Registration for ApacheCon North America/Montreal is open http://apachecon.com/acna18/
 - 8 October: Apache Roadshow and Open Source Job Fair/Fairfax, VA --Save The Date!
 - Media and Community Partner opportunities available: contact press@apache.org if you can help.

ASF Infrastructure –our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield great performance at 92.39% uptime. http://status.apache.org/

ASF Operations Factoid –this week, 505 Apache contributors changed 1,356,389 lines of code over 3,304 commits. Top 5 contributors, in order, are: Rakesh Radhakrishnan, Gary Gregory, Shawn McKinney, Andrea Cosentino, and Julian Reschke.

Apache Commons™ DBCP –database connection pooling services.
 - Apache Commons DBCP 2.5.0 released http://commons.apache.org/

Apache Ignite™ –a memory-centric distributed database, caching, and processing platform for transactional, analytical, and streaming workloads delivering in-memory speeds at petabyte scale.
 - Apache Ignite 2.6.0 released https://ignite.apache.org/
 - [CVE-2018-1273] Apache Ignite impacted by security vulnerability in Spring Data Commons http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3CCAK0qHnqzfzmCDFFi6c5Jok19zNkVCz5Xb4sU%3D0f2J_1i4p46zQ%40mail.gmail.com%3E
 - [CVE-2018-8018] Possible Execution of Arbitrary Code via Apache Ignite GridClientJdkMarshaller http://mail-archives.apache.org/mod_mbox/www-announce/201807.mbox/%3CCAK0qHnrpBcaDc65bjdX1jEqr6L9a%2BOWcouC9P6JwEY1vh9gbhQ%40mail.gmail.com%3E

Apache Kafka™ –a distributed, fault tolerant, publish-subscribe messaging.
 - Apache Kafka 1.0.2 released https://kafka.apache.org/

Apache NiFi™ –an easy to use, powerful, and reliable system to process and distribute data.
 - Apache NiFi 1.7.1 released https://nifi.apache.org/

Apache Phoenix™ –enables OLTP and SQL-based operational analytics for Apache Hadoop.
 - Apache Phoenix 5.0.0 released http://phoenix.apache.org/

Apache Qpid™ –a messaging library for the Advanced Message Queuing Protocol 1.0 (AMQP 1.0, ISO/IEC 19464, http://www.amqp.org).
Apache Qpid Proton-J 0.27.2 and 0.28.0, and Qpid JMS AMQP 0-x 6.3.2 released http://qpid.apache.org/

Apache Subversion™ –leading Open Source version control system.
 - Apache Subversion 1.9.9 and 1.10.2 released https://subversion.apache.org/

Did You Know?

 - Did you know that Nextens improved searchability and created smart relationships between its intricate tax law content using Apache Tinkerpop Gremlin? http://tinkerpop.apache.org/

 - Did you know that you can improve query performance using Apache Parquet columnar storage format? http://parquet.apache.org/

 - Did you know that over the past year, 3,280 Committers changed 71,186,324 lines of code over 222,684 commits? https://projects.apache.org/

Apache Community Notices:

 - ASF Annual Report for FY2018 https://s.apache.org/FY2018AnnualReport

 - The Apache Software Foundation Celebrates 19 Years of Open Source Leadership "The Apache Way" https://s.apache.org/gK4Q

 - Read "Open – For Business – At the ASF" by Merv Adrian, VP Research at Gartner https://blogs.gartner.com/merv-adrian/2018/03/27/open-for-business-at-the-asf/

 - The Apache Software Foundation 2018 Vision Statement https://s.apache.org/zqC3

 - Apache in 2017 - By The Digits https://s.apache.org/h8do

 - Foundation Statement –Apache Is Open. https://s.apache.org/PIRA

 - "Success at Apache" focuses on the processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

 - Please follow/like/re-tweet the ASF on social media: @TheASF on Twitter and on LinkedIn at https://www.linkedin.com/company/the-apache-software-foundation

 - Do friend and follow us on the Apache Community Facebook page https://www.facebook.com/ApacheSoftwareFoundation/and Twitter account https://twitter.com/ApacheCommunity

 - The list of Apache project-related MeetUps can be found at http://apache.org/events/meetups.html

 - ApacheCon North America will be held 24-27 September in Montreal http://apachecon.com/

 - Save the Date: Apache Roadshow DC and Open Source/Government/Cyber/Job Fair - 8 October 2018 in Fairfax, VA http://apachecon.com/

 - Find out how you can participate with Apache community/projects/activities --opportunities open with Apache HTTP Server, Avro, ComDev (community development), Directory, Incubator, OODT, POI, Polygene, Syncope, Tika, Trafodion, and more! https://helpwanted.apache.org/

 - Are your software solutions Powered by Apache? Download & use our "Powered By" logos http://www.apache.org/foundation/press/kit/#poweredby

= = =

For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. For a broader spectrum from the Apache community, https://twitter.com/PlanetApache provides an aggregate of Project activities as well as the personal blogs and tweets of select ASF Committers.

# # #

Calendar

Search

Hot Blogs (today's hits)

Tag Cloud

Categories

Feeds

Links

Navigation