The Apache Software Foundation
Blogging in Action.

The Apache News Round-up: week ending 7 May 2021

Welcome, May --we're opening the month with another great week. Here's what the Apache community has been up to:

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 19 May 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998. Two events held in 2021 are: ApacheCon Asia (6-8 August) and ApacheCon@Home (21-23 September).
 - Registration is open for both ApacheCons https://www.apachecon.com/
 - Sponsorships available https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.95%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 339 Apache Committers changed 1,251,406 lines of code over 2,937 commits. Top 5 contributors, in order, are: Jean-Baptiste Onofré, Tilman Hausherr, Andrea Cosentino, Claus Ibsen, and Sylwester Lachiewicz.         

Apache Project Announcements – the latest updates by category.

Big Data --
 - Apache Flink 1.13.0 released https://flink.apache.org/

Content --
 - Media Alert: Apache OpenOffice Recommends upgrade to v4.1.10 to mitigate legacy vulnerability https://s.apache.org/4gj2y
 - Apache OpenOffice 4.1.10 released https://www.openoffice.org/
 - Apache UIMA Java SDK 3.2.0 released https://uima.apache.org/
 - Apache Jackrabbit 2.12 retired http://jackrabbit.apache.org/

Integration --
 - Apache Camel 3.7.4 released https://camel.apache.org/

Servers --
 - Apache HttpComponents Core 5.1.1 GA released https://hc.apache.org/

Workflow --
 - Apache Airflow CVE-2021-28359: Apache Airflow Reflected XSS via Origin Query Argument in URL https://s.apache.org/f5bfx

Did You Know?

- Did you know that the following Apache projects are celebrating anniversaries this week? Many happy returns to Geronimo (17 years); Tomcat (16 years); OpenJPA, POI, TomEE, and Turbine (14 years); Libcloud (10 years); Giraph and ManifoldCF (9 years); Phoenix (7 years); Whimsy (6 years); Bahir, TinkerPop, and Zeppelin (5 years); SystemDS (4 years); Dubbo (2 years); Hudi and Iceberg (1 year). https://projects.apache.org/committees.html?date

- Did you know that eBay uses Apache Flink to power Big Data streaming for its recommendation engine in real-time? https://flink.apache.org/

- Did you know that Norwegian business management solutions provider Visma powers its Enterprise Suite to serve more than 1 Million customers and 12,500+ employees using Apache Wicket? http://wicket.apache.org/

Apache Community Notices

- The Apache Month in Review: April 2021 https://s.apache.org/Apr2021 and video highlights https://youtu.be/EOA1L1PjCYg

- The Apache® Software Foundation Celebrates 22 Years of Open Source Leadership – world’s largest Open Source foundation advances community-led innovation "The Apache Way" https://s.apache.org/22ndAnniversay

- The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021 + Video highlights https://youtu.be/S6FWqAuA_8M

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 07:37AM May 07, 2021 by Swapnil M Mane in Newsletter  |   | 

Apache Month in Review: April 2021

Welcome to the latest monthly overview of events from the Apache community. Here's a summary of what happened in April (video highlights available at https://youtu.be/EOA1L1PjCYg ):

New this month --

 - The Apache Software Foundation Welcomes 40 New Members https://s.apache.org/2021NewMembers

 - ApacheCon™ (the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998) will be held twice in 2021: ApacheCon Asia (6-8 August) and ApacheCon@Home (21-23 September). Registration and sponsorship opportunities at https://www.apachecon.com/ --CFP closes 3 May!

 - New Sponsor Success at Apache post (the blog series that focuses on the people and processes behind why the ASF "just works", featuring insights and experiences from the perspective of select ASF Sponsors): "The Fork" by Wei Zhou https://s.apache.org/snobd

 - The Apache Software Foundation Announces Apache® DolphinScheduler™ as a Top-Level Project https://s.apache.org/yavpt

 - The Apache Attic provides process and solutions when an Apache project has reached its end of life. 19 Apache projects --Apex, Aurora, Chukwa, Crunch, DRAT, Eagle, Forrest, Hama, Labs, Lens, Marmotta, Metron, Open Climate Workbench, PredictionIO, Sentry, Stanbol, Tajo, Twill, and VXQuery-- have retired in April http://attic.apache.org/

 - Apache Month in Review: March 2021 https://s.apache.org/Mar2021 + Video highlights https://youtu.be/wq2HXN4z9W0

Important Dates --

 - CFP closes for ApacheCon Asia and ApacheCon@Home: 3 May 2021 https://www.apachecon.com/ 

 - Next Board Meeting: 19 May 2021. Board calendar and minutes http://apache.org/foundation/board/calendar.html

Infrastructure --

In April, 738 Apache Committers changed 8,108,869 lines of code over 13,898 commits. The Committers with the top 5 highest contributions, in order, were: Andrea Cosentino, Mark Thomas, Shad Storhaug, Sebastian Rühl, and Stephen Mallette.  

Project Releases and Updates --

New releases from Apache Ant (Build Management); APISIX (API); Camel (Integration); Druid (Big Data); Flagon (Incubating; Libraries); Geode (Database); Groovy (Programming Languages); Hop (Incubating; Orchestration); Jackrabbit (Content); James (Mail); Kafka (Big Data); Karaf (Application Servers/Middleware); Maven (Build Management); MyFaces (Web Frameworks); MyNewt (Embedded OS); MXNet (Incubating; Libraries); OFBiz (Enterprise Processes Automation / ERP); OpenOffice (Content); Parquet (Big Data); PDFBox (Content); Qpid Proton (Messaging); Skywalking (Application Performance Management); Solr (Search); SpamAssassin (Mail); Syncope (Identity Management); Tika (Big Data); Tomcat (Servers); Traffic Server (Servers); Wicket (Web Frameworks); ZooKeeper (Databases).

The Apache Incubator is the primary entry path for projects wishing to become an official part of the ASF. We invite you to review the many projects currently in development in the Apache Incubator, including recent additions in the advertising, Big Data, geospatial, machine learning, messaging, natural language understanding, orchestration, and scheduling categories http://incubator.apache.org/ .

# # #

To see our Weekly News Round-ups (published every Friday), visit https://blogs.apache.org/foundation/ and click on the calendar or hop directly to https://blogs.apache.org/foundation/category/Newsletter . For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. We appreciate your support!

Posted at 01:43PM May 01, 2021 by Swapnil M Mane in Newsletter  |   | 

The Apache News Round-up: week ending 30 April 2021

So long, April --the Apache community has had a productive last week of the month. Let's review what happened:

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 19 May 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998. Two events held in 2021 are: ApacheCon Asia (6-8 August) and ApacheCon@Home (21-23 September).
 - Registration for both ApacheCons is open https://www.apachecon.com/
 - CFP CLOSING for both events: your last chance to submit your proposal by 3 May
 - Sponsorships available https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.98%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 377 Apache Committers changed 902,863 lines of code over 3,113 commits. Top 5 contributors, in order, are: Shad Storhaug, Daan Hoogland, Andrea Cosentino, Dan Haywood, and Duo Zhang.   

Apache Project Announcements – the latest updates by category.

Big Data --
 - Apache Druid 0.21.0 released https://druid.apache.org/

Build Management --
 - Apache Maven CVE-2021-26291: Block repositories using http by default https://s.apache.org/9f9ta

Enterprise Processes Automation / ERP --
 - Apache OFBiz 17.12.07 released https://ofbiz.apache.org/
 - Apache OFBiz CVE-2021-29200: RCE vulnerability due to Java serialization using RMI https://s.apache.org/rsj6t
   and CVE-2021-30128: Unsafe deserialization in OFBiz https://s.apache.org/asi93

Mail --
 - Apache James MIME4J 0.8.4 released https://james.apache.org/

Web Frameworks --
 - Apache MyFaces Core 2.3.9 released http://myfaces.apache.org/

Did You Know?

- Did you know that one of the world's largest retailers with tens of thousands of stores uses Apache Pinot (incubating) as their unified analytics platform for mission-critical applications across billions of transactions in real time? http://pinot.apache.org/

- Did you know that the Apache CloudStack community will be holding the European CloudStack User Group online on 27 May? http://cloudstack.apache.org/

- Did you know that the Apache Flink community will be holding the Flink Summer Camp online 17-21 May? https://flink.apache.org/

Apache Community Notices

- The Apache Month in Review: March 2021 https://s.apache.org/Mar2021 and video highlights https://youtu.be/wq2HXN4z9W0

- The Apache® Software Foundation Celebrates 22 Years of Open Source Leadership – world’s largest Open Source foundation advances community-led innovation "The Apache Way" https://s.apache.org/22ndAnniversay

- The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021 + Video highlights https://youtu.be/S6FWqAuA_8M

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 06:58AM Apr 30, 2021 by Sally Khudairi in Newsletter  |   | 

The Apache News Round-up: week ending 23 April 2021

Welcome, Friday --let's review the Apache community's activities over the past week:

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 19 May 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998.
 - Registration for both ApacheCons is open: ApacheCon Asia (6-8 August) and ApacheCon@Home (21-23 September) https://www.apachecon.com/
 - CFP DEADLINE approaching for both events --get your proposals in by 3 May
 - Sponsorships available for both events https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.98%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 369 Apache Committers changed 1,176,324 lines of code over 3,156 commits. Top 5 contributors, in order, are: Andrea Cosentino, Mark Thomas, Sebastian Rühl, Otavio Rodolfo Piske, and Martin Hesse.     

Apache Project Announcements – the latest updates by category.

Big Data --
 - Apache Kafka  2.6.2 and 2.8.0 released https://kafka.apache.org/

Build Management --
 - Apache Ant 1.10.10 released https://ant.apache.org/

Database --
 - Apache Geode 1.12.2 released http://geode.apache.org/

Libraries --
 - Apache Flagon UserALE.js 2.1.1 (Incubating) released https://flagon.incubator.apache.org/

Mail --
 - Apache SpamAssassin 3.4.6 released http://spamassassin.apache.org/

Programming Languages --
 - Apache Groovy 4.0.0-alpha-3 released https://groovy.apache.org/

Servers --
 - Apache Traffic Server 9.0.1 released https://trafficserver.apache.org/

Did You Know?

- Did you know that the Apache Cassandra community will be holding the Cassandra World Party online on 28 April? https://cassandra.apache.org/ 

- Did you know that you can help Apache Sedona (incubating; formerly GeoSpark) improve their software by submitting your feedback on your experience with the project? https://s.apache.org/ounj3   

- Did you know that the Apache SkyWalking community will be holding SkyWalkingDay conference 2021 in Shenzhen on 12 June? https://skywalking.apache.org/

Apache Community Notices

- The Apache Month in Review: March 2021 https://s.apache.org/Mar2021 and video highlights https://youtu.be/wq2HXN4z9W0

- The Apache® Software Foundation Celebrates 22 Years of Open Source Leadership – world’s largest Open Source foundation advances community-led innovation "The Apache Way" https://s.apache.org/22ndAnniversay

- The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021 + Video highlights https://youtu.be/S6FWqAuA_8M

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 08:30AM Apr 23, 2021 by Sally Khudairi in Newsletter  |   | 

The Apache News Round-up: week ending 16 April 2021

It's Friday already --the week has zipped by. Let's take a look at what the Apache community has been up to:

The Apache Software Foundation – the all-volunteer developers, stewards, and incubators of more than 350 Open Source projects and initiatives.
 - The Apache Software Foundation Welcomes 40 New Members https://s.apache.org/2021NewMembers

Sponsor Success at Apache – the blog series that focuses on the people and processes behind why the ASF "just works", featuring insights and experiences from the perspective of select ASF Sponsors
 - "The Fork" by Wei Zhou https://s.apache.org/snobd

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 21 April 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998.
 - Registration for both ApacheCons are open: ApacheCon Asia (6-8 August) and ApacheCon@Home (21-23 September) https://www.apachecon.com/
 - CFP open for both events --deadline: 3 May
 - Sponsorships available for both events https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.82%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 389 Apache Committers changed 3,665,237 lines of code over 3,513 commits. Top 5 contributors, in order, are: Andrea Cosentino, Stephen Mallette, Nick Vatamaniuc, Andi Huber, and Jarek Potiuk.   

Apache Project Announcements – the latest updates by category.

Apache Attic --provides process and solutions when an Apache project has reached its end of life. http://attic.apache.org/
 - Apache Tajo has retired https://s.apache.org/qbf3g
 - Apache PredictionIO has retired https://s.apache.org/jabyg
 - Apache Lens has retired https://s.apache.org/xy0hb
 - Apache Labs has retired https://s.apache.org/ljate
 - Apache DRAT has retired https://s.apache.org/23ky1
 - Apache Crunch has retired https://s.apache.org/so0w2
 - Apache Twill has retired https://s.apache.org/p4uzy
 - Apache Chukwa has retired https://s.apache.org/7t8qb
 - Apache Sentry has retired https://s.apache.org/0y5mr
 - Apache Metron has retired https://s.apache.org/578zx
 - Apache Eagle has retired https://s.apache.org/q0vv9
 - Apache Marmotta has retired https://s.apache.org/gvczw
 - Apache Open Climate Workbench has retired https://s.apache.org/16mgz

APIs --
 - Apache APISIX Ingress Controller 0.5.0 released https://apisix.apache.org/

Big Data --
 - Apache Parquet Format 2.9.0 released https://parquet.apache.org/

Content --
 - Apache Jackrabbit 2.21.6 and Oak 1.22.7 released http://jackrabbit.apache.org/
 - Apache OpenOffice CVE-2021-30245: Code execution via non-http(s) schemes in Hyperlinks https://s.apache.org/3te5p

Identity Management --
 - Apache Syncope 2.1.9 released https://syncope.apache.org/

Messaging --
 - Apache Qpid Proton 0.34.0 and JMS 0.58.0 released http://qpid.apache.org/

Observability --
 - Apache SkyWalking 8.5.0 released https://skywalking.apache.org/

Orchestration --
 - Apache Hop (incubating) 0.70 released https://hop.apache.org/

Search --
 - Apache Solr 8.8.2 released http://solr.apache.org/
 - Apache Solr CVE-2021-29943: Unprivileged users may be able to perform unauthorized read/write to collections https://s.apache.org/chwmb
   CVE-2021-29262: Misapplied Zookeeper ACLs can result in leakage of configured authentication and authorization settings https://s.apache.org/lubsr
   and CVE-2021-27905: SSRF vulnerability with the Replication handler https://s.apache.org/rz4eh

Servers --
 - Apache Tomcat Native 1.2.28 released https://tomcat.apache.org/

Did You Know?

- Did you know that ApacheTika's OpenNLP language detector supports 148 languages? http://tika.apache.org/

- Did you know that Ignite Summit will be held online 25 May? https://ignite.apache.org/ 

- Did you know that the Robinhood financial services app is powered by Apache Airflow, Hadoop YARN, Hive, Hudi, and Spark? https://projects.apache.org/projects.html?category#big-data

Apache Community Notices

- The Apache Month in Review: March 2021 https://s.apache.org/Mar2021 and video highlights https://youtu.be/wq2HXN4z9W0

- The Apache® Software Foundation Celebrates 22 Years of Open Source Leadership – world’s largest Open Source foundation advances community-led innovation "The Apache Way" https://s.apache.org/22ndAnniversay

- The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021 + Video highlights https://youtu.be/S6FWqAuA_8M

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 05:42AM Apr 16, 2021 by Swapnil M Mane in Projects  |   | 

Sponsor Success at Apache: The Fork

by Wei Zhou

I joined the Apache CloudStack community in 2012 and became a committer in 2013, eventually becoming a PMC (Project Management Committee) member in 2017. My journey to becoming a PMC was both physical and literal, and included several forks in the road. The forks presented themselves in all aspects of my journey – although the literal forks came later, mainly because my journey began in China.

In 2010 I was working at China Mobile, the world's largest mobile network operator, in Beijing as the manager of a cloud project based on OpenNebula (another Open Source project). A year later, my partner received her PhD in the Netherlands and began working in Belgium, so I started looking for new work opportunities in the area. 

In 2012 I visited Europe and had a few interviews, but it was difficult at the time as my English was quite poor.

I was committed to finding a good job and moving to Europe, which meant I needed to improve my English quickly. I studied the language, left China Mobile, and moved to Belgium permanently. It took me seven months to became fluent in English. I re-interviewed at the companies that had rejected me seven months prior and landed a position in Amsterdam at Leaseweb as a Cloud Innovation Engineer. At that time, we had two public cloud platforms based on Apache CloudStack. I was mainly working on the research of Apache CloudStack.

In the first two months I fixed some bugs we found in our productions. Thanks to the CloudStack community, I also received tons of help as I began contributing my changes to the mainstream. In 2013 was invited to be a committer, 3 months after my first submission. It was a huge surprise and a massive honor for me, and I began pushing my changes for new features and bug fixes much more quickly.

A year later, in 2014, Leaseweb released its first private cloud based on Apache CloudStack. It was very welcomed by many customers. As this was happening, we began finding issues with CloudStack as customers were requesting more features and functionalities. The same year, Apache CloudStack moved code repositories to GitHub.com and started using GitHub pull quests to review and merge commits. While all commits should be reviewed and approved by other commits before they are merged into the mainstream, we had already made many changes at Leaseweb and could not wait for next release. Because of this we created our own fork containing all our changes and bug fixes. 

We developed very quickly, and our process was much faster than the review/merge process of Apache CloudStack. The gap between our fork and the community was getting bigger and bigger. When we decided to upgrade from CloudStack 4.2.1 to CloudStack 4.7.1, we had to spend half of a year just to port all of our changes in our fork based on CloudStack 4.2.1 to new fork based on CloudStack 4.7.1. The same problem happened again when we tried to upgrade to CloudStack 4.14, and we had to spend around one year to port all of our changes. The lesson we learned from these two upgrades was that we needed to contribute more to the community and maintain a fork as small as possible. After realizing this, we contributed all of our features and bug fixes to the community by creating many GitHub PRs. Some PRs have now already been merged into mainstream, while others are still in review.

My colleague recently asked me, “If you could go back in time, would you still make the Leaseweb fork?” My answer is yes, I would do it again. A fork makes us more flexible, as we can offer more stable production and more functionalities to our customers. However, if I could go back in time, I would have spent much more time contributing our changes to the community. I’ve learned that the gap between the fork and the community should be less than 100 commits.

We learned so much from these two painstakingly long ports and have implemented the above advice. From now on, the Leaseweb fork only contains features we have developed in the past and bug fixes. For new features, we will always contribute to community and deploy to our production only if it is merged into the mainstream. By doing this, we will be able to upgrade to the next CloudStack release much easier, and will benefit more from the community (e.g., more bug fixes, more features by other contributors). When we contribute to the community, we also benefit from knowledge sharing and the contributions from others.

Wei Zhou has been an Apache committer since 2013 and a PMC member since 2017. He has a Masters in Computer Applied Technology from the University of Science and Technology of China, and a PHD in Computer Organization and Architecture from the Institute of Computing Technology, Chinese Academy of Sciences. Wei specializes in all things computers and has over 10 years of experience in software development. He is a Principal Cloud Engineer at Leaseweb.

= = =

"Success at Apache" is a monthly blog series that focuses on the processes behind why the ASF "just works". "Sponsor Success at Apache" features insights and experiences by select ASF Sponsors https://apache.org/foundation/thanks.html

For more Success at Apache posts, visit https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 04:12PM Apr 12, 2021 by Sally Khudairi in SuccessAtApache  |   | 

The Apache News Round-up: week ending 9 April 2021

Happy Friday! Let's take a look at what the Apache community has been up to over the past week:

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 21 April 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998.
 - Two ApacheCons are taking place in 2021: ApacheCon Asia (6-8 August) and ApacheCon@Home (21-23 September) https://www.apachecon.com/
   -- Registration and CFPs open for both events (CFP deadline: 3 May)
   -- Sponsorships available for both events https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 100.00%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 385 Apache Committers changed 1,986,331 lines of code over 3,300 commits. Top 5 contributors, in order, are: Andrea Cosentino, Mark Thomas, Tellier Benoit, Duo Zhang, and Jarek Potiuk.  

Apache Project Announcements – the latest updates by category.

Apache Attic --provides process and solutions when an Apache project has reached its end of life. http://attic.apache.org/
 - Apache Apex has retired https://s.apache.org/6b6dw
 - Apache Aurora has retired https://s.apache.org/d7emy
 - Apache Forrest has retired https://s.apache.org/ay2la
 - Apache Hama has retired https://s.apache.org/jz12i
 - Apache Stanbol has retired https://s.apache.org/21yt9
 - Apache VXQuery has retired https://s.apache.org/8ahun

APIs --
 - Apache APISIX 2.5 released https://apisix.apache.org/

Application Servers/Middleware --
- Apache Karaf runtime 4.3.1 released https://karaf.apache.org/

Content --
 - Apache PDFBox 3.0.0-RC1 released https://pdfbox.apache.org/

Embedded OS --
 - Apache Mynewt 1.9.0 and Apache NimBLE 1.4.0 released https://mynewt.apache.org/

Libraries --
 - Apache CXF CVE-2021-22696: OAuth 2 authorization service vulnerable to DDos attacks https://s.apache.org/fk5ik

Servers --
 - Apache Tomcat 8.5.65, 9.0.45, and 10.0.5 released https://tomcat.apache.org/

Web Frameworks --
 - Apache Wicket 7.18.0 and 8.12.0 released https://wicket.apache.org/

Workflow --
 - The Apache Software Foundation Announces Apache® DolphinScheduler™ as a Top-Level Project https://s.apache.org/yavpt

Did You Know?

- Did you know that the following Apache projects are celebrating anniversaries this month? Three cheers to Apache CXF (13 years); Avro, HBase, Mahout, Nutch, Tika, and Traffic Server (11 years); Creadur and Jena (9 years); DeltaSpike (8 years); ORC and Parquet (6 years); AsterixDB and Johnzon (5 years); CarbonData and Fineract (4 years); NetBeans, PLC4X, and SkyWalking (2 years); and ShardingSphere (1 year). https://projects.apache.org/committees.html?date

- Did you know that Apache DolphinScheduler and Apache ShardingSphere are joining forces at an online global MeetUp on 15 May? Presentations and use cases on both projects will be made in English. https://www.meetup.com/dolphinscheduler-meetup-group/

- Did you know that Ignite Summit will be taking place 25 May? https://ignite-summit.org/ 

Apache Community Notices

- The Apache Month in Review: March 2021 https://s.apache.org/Mar2021 and video highlights https://youtu.be/wq2HXN4z9W0

- The Apache® Software Foundation Celebrates 22 Years of Open Source Leadership – world’s largest Open Source foundation advances community-led innovation "The Apache Way" https://s.apache.org/22ndAnniversay

- The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021 + Video highlights https://youtu.be/S6FWqAuA_8M

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 06:33AM Apr 09, 2021 by Swapnil M Mane in Newsletter  |   | 

The Apache News Round-up: week ending 2 April 2021

Welcome, April --we're opening the month with another great week. Here's what the Apache community has been up to:

Apache Month-in-Review – a look back at our activities over the past month. 
- March 2021 https://s.apache.org/Mar2021 and video highlights https://youtu.be/wq2HXN4z9W0

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Next Board Meeting: 21 April 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998.
 - CFPs open for ApacheCon@Home AND ApacheCon Asia https://www.apachecon.com/ 
 - Event Sponsorship available for both ApacheCon@Home and ApacheCon Asia https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.78%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 383 Apache Committers changed 2,210,334 lines of code over 3,572 commits. Top 5 contributors, in order, are: Jean-Baptiste Onofré, Andrea Cosentino, Daniel Gruno, Mark Thomas, and  Thomas Vandahl.       

Apache Project Announcements – the latest updates by category.

Big Data --
 - Apache Druid 0.20.2 released https://druid.apache.org/
 - Apache Druid CVE-2021-26919: Authenticated users can execute arbitrary code from malicious MySQL database systems https://s.apache.org/xgi7a

Content --
 - Apache Tika 1.26 released https://tika.apache.org/
 - Apache Tika CVE-2021-28657: Infinite loop in MP3 parser https://s.apache.org/9vlh2

Database --
 - Apache ZooKeeper 3.7.0 released https://zookeeper.apache.org/
 - Apache Geode 1.13.2 released http://geode.apache.org/

Integration --
 - Apache Camel 3.9.0 released https://camel.apache.org/

Libraries --
 - Apache MXNet (Incubating) 1.8.0 released http://mxnet.incubator.apache.org

Observability --
 - Apache SkyWalking Python 0.6.0 and NodeJS 0.2.0 released https://skywalking.apache.org/

Web Frameworks --
 - Apache Wicket 9.3.0 released https://wicket.apache.org/

Did You Know?

- Did you know that this year's ApacheCon Platinum sponsorships are sold out? Great options and combo packages available for both events https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

- Did you know that Apache Druid will be holding their Ecosystems MeetUp on 6 April and DataEng MeetUp on 7 April? http://druid.apache.org/ 

- Did you know that the Apache CloudStack community will hold its virtual European User Group on 27 May? http://cloudstack.apache.org/

Apache Community Notices

- The Apache® Software Foundation Celebrates 22 Years of Open Source Leadership – world’s largest Open Source foundation advances community-led innovation "The Apache Way" https://s.apache.org/22ndAnniversay

- The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021 + Video highlights https://youtu.be/S6FWqAuA_8M

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 11:33AM Apr 02, 2021 by Swapnil M Mane in Newsletter  |   | 

Apache Month in Review: March 2021

Welcome to the latest monthly overview of events from the Apache community. Here's a summary of what happened in March (video highlights available at https://s.apache.org/exppv):

New this month --

 - It's our anniversary! The Apache® Software Foundation Celebrates 22 Years of Open Source Leadership – world’s largest Open Source foundation advances community-led innovation "The Apache Way" https://s.apache.org/22ndAnniversay

 - Announcing New ASF Board of Directors https://s.apache.org/NewBoard2021

 - ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998.
   -- CFPs open for ApacheCon@Home AND ApacheCon Asia https://www.apachecon.com/ 
   -- Event Sponsorship available for both ApacheCon@Home and ApacheCon Asia https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

 - The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021 + Video highlights https://youtu.be/S6FWqAuA_8M

 - The Apache Software Foundation Announces Apache® Daffodil™ as a Top-Level Project https://s.apache.org/18vob

 - Apache Month in Review: February 2021 https://s.apache.org/Feb2021 + Video highlights https://youtu.be/6TMuYglu2Cc

Important Dates --

  - Next Board Meeting: 21 April 2021. Board calendar and minutes http://apache.org/foundation/board/calendar.html

Infrastructure --

In March, 783 Apache Committers changed 12,041,653 lines of code over 16,037 commits. The Committers with the top 5 highest contributions, in order, were: Andrea Cosentino, Jean-Baptiste Onofré, Mark Thomas, Claus Ibsen, and Gary Gregory.

Project Releases and Updates --

New releases from Apache APISIX (API); Avro (Big Data); Camel (Integration); CloudStack (Cloud Computing); Commons Lang and Numbers (Libraries); Daffodil (Libraries); Flink (Big Data); HttpComponents (Servers); Jackrabbit (Content); Karaf (Application Servers/Middleware); Log4j (Libraries); NetBeans (Integrated Development Environment); NiFi (Big Data); OFBiz (Enterprise Processes Automation / ERP); OpenMeetings (Web Conferencing); Parquet (Big Data); PDFBox (Content); Qpid JMS (Messaging); Skywalking (Application Performance Management); SpamAssassin (Mail); Teaclave (Incubating; Computing); Tomcat (Servers); Velocity (Library); XMLBeans (Library).

The Apache Incubator is the primary entry path for projects wishing to become an official part of the ASF. We invite you to review the many projects currently in development in the Apache Incubator http://incubator.apache.org/ .

# # #

To see our Weekly News Round-ups (published every Friday), visit https://blogs.apache.org/foundation/ and click on the calendar or hop directly to https://blogs.apache.org/foundation/category/Newsletter . For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. We appreciate your support!

Posted at 12:45PM Apr 01, 2021 by Swapnil M Mane in Newsletter  |   | 

The Apache News Round-up: week ending 26 March 2021

Farewell, March --we're wrapping up the month with another great week. Here are the latest updates on the Apache community's activities:

It's our anniversary! The Apache® Software Foundation Celebrates 22 Years of Open Source Leadership – world’s largest Open Source foundation advances community-led innovation "The Apache Way" https://s.apache.org/22ndAnniversay

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021 + Video highlights https://youtu.be/S6FWqAuA_8M
 - Next Board Meeting: 21 April 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998.
 - CFPs open for ApacheCon@Home AND ApacheCon Asia https://www.apachecon.com/ 
 - Event Sponsorship available for both ApacheCon@Home and ApacheCon Asia https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.85%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 380 Apache Committers changed 2,537,583 lines of code over 3,380 commits. Top 5 contributors, in order, are: Mark Thomas, Alexander Pucher, Tilman Hausherr, Claus Ibsen, and Andrea Cosentino.       

Apache Project Announcements – the latest updates by category.

Application Servers/Middleware --
 - Apache Karaf 4.2.11 released https://karaf.apache.org/

Big Data --
 - Apache Qpid JMS 0.57.0 released https://qpid.apache.org/
 - Apache Parquet 1.12.0 released https://parquet.apache.org/

Content --
 - Apache PDFBox 2.0.23 released https://pdfbox.apache.org/
 - Apache PDFBox CVE-2021-27807: A carefully crafted PDF file can trigger an infinite loop while loading the file https://s.apache.org/6qk90
   and CVE-2021-27906: A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file https://s.apache.org/cz894

Enterprise Processes Automation / ERP --
 - Apache OFBiz 17.12.06 released https://ofbiz.apache.org/
 - Apache OFBiz CVE-2021-26295: RCE vulnerability due to Java serialization using RMI https://s.apache.org/styah

Mail --
 - Apache SpamAssassin 3.4.5 released http://spamassassin.apache.org/
 - Apache SpamAssassin CVE-2020-1946: Malicious rule configuration (.cf) files can be configured to run system commands https://s.apache.org/g5s6w

Did You Know?

- Did you know that you can help improve the Apache Flink community experience by completing their Community Survey before 30 March? https://s.apache.org/4xv8n

- Did you know that the Ignite Summit will take place online on 25 May? https://ignite.apache.org/

- Did you know that Apache Hop (incubating) will be presenting "The Road to Hop 1.0" at their Hot Hop Hangout session on 1 April? https://s.apache.org/ypt6f

Apache Community Notices

- The Apache Month in Review: February 2021 https://s.apache.org/Feb2021 + Video highlights https://youtu.be/6TMuYglu2Cc

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 08:07AM Mar 26, 2021 by Swapnil M Mane in Newsletter  |   | 

The Apache News Round-up: week ending 19 March 2021

And it's Friday! Let's take a look at what the Apache community has been up to over the past week:

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - The Apache Software Foundation Operations Summary: Q3 FY2021 (November 2020 - January 2021) https://s.apache.org/Q3FY2021
 - Next Board Meeting: 21 April 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998.
 - CFPs open for ApacheCon@Home AND ApacheCon Asia: proposals now accepted for both events! Tracks include API/Microservices, Big Data, Cassandra, Community, Content Delivery & Management, Culture, Drill, Fineract/Fintech, Geospatial, Groovy, Incubator, Integration, IoT/IIoT, Karaf, Messaging, Middleware, Observability, Royale, RDF/Linked Data, Search, Social Data, Streaming, Tomcat, and more. https://www.apachecon.com/ 
 - Event Sponsorship available, including package deals for a global presence at both events! https://www.apachecon.com/acah2021/2021_ApacheCon_prospectus.pdf

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.38%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 400 Apache Committers changed 3,004,173 lines of code over 3,661 commits. Top 5 contributors, in order, are: Andrea Cosentino, Claus Ibsen, Daan Hoogland, Gary Gregory, and Mark Thomas.                           

Apache Project Announcements – the latest updates by category.

Big Data --
 - Apache NiFi 1.13.1 released http://nifi.apache.org/
 - Apache Avro 1.10.2 released https://avro.apache.org/

Libraries --
 - Apache Log4j 2.14.1 released http://logging.apache.org/
 - Apache XMLBeans 5.0.0 released  https://xmlbeans.apache.org/

Servers --
 - Apache HttpComponents Core 5.1 GA released https://hc.apache.org/

Web Conferencing --
 - Apache OpenMeetings CVE-2021-27576: Bandwidth can be overloaded with public web service https://s.apache.org/2pj12

Did You Know?

- Did you know that the ASF provides a comprehensive list of Export Control Classification Numbers (ECCNs) for more than 50 Apache projects subject to export controls? https://apache.org/licenses/exports/

- Did you know that the CFP for Airflow Summit (8-16 July 2021) is now open? https://airflowsummit.org/ 

- Did you know that the Apache Druid community will be holding "drop-in" MeetUps on 23 and 31 March? http://druid.apache.org/

Apache Community Notices

- The Apache Month in Review: February 2021 https://s.apache.org/Feb2021 + Video highlights https://youtu.be/6TMuYglu2Cc

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 08:55AM Mar 19, 2021 by Swapnil M Mane in Newsletter  |   | 

The Apache News Round-up: week ending 12 March 2021

Hello, Friday. Let's review the Apache community's activities from over the past week:

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws.
 - Announcing New ASF Board of Directors https://s.apache.org/NewBoard2021
 - Next Board Meeting: 17 March 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ApacheCon™ – the ASF's official global conference series, bringing Tomorrow's Technology Today since 1998.
 - CFP open for ApacheCon@Home 2021: proposals now accepted for 20 tracks that include API/Microservices, Big Data, Cassandra, Content Delivery & Management, Community, Drill, Fineract/Fintech, Geospatial, Groovy, Incubator, Integration, IoT, Karaf, Observability, Royale, RDF/Linked Data, Search, Social Data, Tomcat, and more. https://www.apachecon.com/acah2021/cfp.html

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 100%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 389 Apache Committers changed 3,798,169 lines of code over 3,471 commits. Top 5 contributors, in order, are: Andrea Cosentino, Daan Hoogland, Gary Gregory, Claus Ibsen, and Tilman Hausherr.                    

Apache Project Announcements – the latest updates by category.

APIs --
 - Apache APISIX 2.4 released https://apisix.apache.org/

Big Data --
 - Apache Flink 1.12.2 released https://flink.apache.org/

Content --
 -  Apache Jackrabbit 2.14.9 released http://jackrabbit.apache.org/

IDE --
 - Apache NetBeans 12.3 released http://netbeans.apache.org/

Integration --
 - Apache Camel 3.7.3 released https://camel.apache.org/

Libraries --
 - Apache Commons Lang 3.12 released https://commons.apache.org/proper/commons-lang/
 - Apache Velocity Engine 2.3 and Tools 3.1 released https://velocity.apache.org/
 - Apache Velocity CVE-2020-13936: Velocity Sandbox Bypass https://s.apache.org/qmlqf
   and CVE-2020-13959: Tools XSS Vulnerability https://s.apache.org/iaoq5

Servers --
 - Apache Tomcat 8.5.64, 9.0.44, and 10.0.4 released https://tomcat.apache.org/

Web Conferencing --
 - Apache OpenMeetings 6.0.0 released https://openmeetings.apache.org/

Did You Know?

- Did you know that the ASF has been chosen to be a Google Summer of Code mentoring organization for the 16th consecutive year? https://community.apache.org/gsoc.html 

- Did you know that Facebook and Uber build streaming SQL applications for unified processing using Apache Flink and Pulsar? Learn more at https://www.meetup.com/Bay-Area-Apache-Flink-Meetup/events/276579450/

- Did you know that the Airflow Summit is accepting submissions through 12 April? https://airflowsummit.org/

Apache Community Notices

- The Apache Month in Review: February 2021 https://s.apache.org/Feb2021 + Video highlights https://youtu.be/6TMuYglu2Cc

- The Apache Software Foundation Operations Summary: Q2 FY2021 (August - October 2020) https://s.apache.org/Q2FY2021

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 01:23PM Mar 12, 2021 by Swapnil M Mane in Newsletter  |   | 

The Apache News Round-up: week ending 5 March 2021

Welcome, March! We've had a great week within the Apache community. Here's what happened:

The Apache Month in Review – highlights of what we've accomplished over the past month. 
- February 2021 https://s.apache.org/Feb2021 + Video highlights https://youtu.be/6TMuYglu2Cc

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws. 
 - Next Board Meeting: 17 March 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

Apache Diversity & Inclusion – initiatives that promote diversity, equity, and inclusion across the greater Apache community.
 - FINAL CALL for Apache project proposals and mentors: Outreachy Open Source internship program May-Aug 2021 https://s.apache.org/s7tz2

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.99%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 392 Apache Committers changed 1,224,925 lines of code over 3,879 commits. Top 5 contributors, in order, are: Jean-Baptiste Onofré, Andrea Cosentino, Gary Gregory, Andi Huber, and Daan Hoogland.              

Apache Project Announcements – the latest updates by category.

Big Data --
 - Apache NiFi MiNiFi C++ 0.9.0 released https://nifi.apache.org/minifi

Cloud Computing --
 - Apache CloudStack 4.14.1.0 LTS released https://cloudstack.apache.org/

Confidential Computing --
 - Apache Teaclave (incubating) 0.2.0 released https://teaclave.apache.org/

Libraries --
 - The Apache Software Foundation Announces Apache® Daffodil™ as a Top-Level Project https://s.apache.org/18vob

Observability --
 - Apache SkyWalking Nginx LUA 0.4.0 released https://skywalking.apache.org/

Servers --
 - Apache Tomcat CVE-2021-25122: h2c request mix-up https://s.apache.org/29cq9
   and CVE-2021-25329: RCE via session persistence https://s.apache.org/9itds

Did You Know?

- Did you that the following Apache projects are celebrating anniversaries this month? Many happy returns to Apache mod_perl (21 years); Maven (18 years); Struts (17 years); Jackrabbit (15 years); Felix (14 years); Archiva (13 years); UIMA (11 years); Accumulo and Sqoop (9 years); Bloodhound, CloudStack, and cTAKES (8 years); Allura and Olingo (7 years); and FreeMarker (3 years) https://projects.apache.org/committees.html?date

- Did you know that the Apache Local Community - Beijing has celebrated its one-year anniversary with numerous impressive achievments? https://s.apache.org/gm9kv

- Did you know that your support helps offset the ASF's day-to-day operating costs? https://s.apache.org/8foo2

Apache Community Notices

- The Apache Software Foundation Operations Summary: Q2 FY2021 (August - October 2020) https://s.apache.org/Q2FY2021

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 06:13AM Mar 05, 2021 by Swapnil M Mane in Newsletter  |   | 

Apache Month in Review: February 2021

Welcome to the latest monthly overview of events from the Apache community. Here's a summary of what happened in February:

New this month --

 - Call for Apache project proposals and mentors: Outreachy Open Source internship program May-Aug 2021 https://s.apache.org/s7tz2

 - The Apache Software Foundation Announces Apache® DataSketches™ as a Top-Level Project https://s.apache.org/jhvqu

 - The Apache Software Foundation Announces Apache® Gobblin™ as a Top-Level Project https://s.apache.org/df92k

 - The Apache® Software Foundation Sustains its Mission of Providing Software for the Public Good through Corporate Sponsorships and Charitable Giving https://s.apache.org/8foo2

 - Apache Month in Review: January 2021 https://s.apache.org/Jan2021

Important Dates --

  - Next Board Meeting: 17 March 2021. Board calendar and minutes http://apache.org/foundation/board/calendar.html

Infrastructure --

In February, 718 Apache Committers changed 8,293,634 lines of code over 13,685 commits. The Committers with the top 5 highest contributions, in order, were: Andrea Cosentino, Gary Gregory, Claus Ibsen, Andi Huber, and Benoit Tellier.

Project Releases and Updates --

New releases from Apache Airflow (Big Data); APISIX (API); Beam (Big Data); BookKeeper (Big Data); Camel (Integration); Commons NET (Libraries); Directory Studio (Network Client / Server); Druid (Big Data); Flink (Big Data); FreeMarker (Templating); HttpComponents (Servers); Lucene (Search); MyFaces (Web Frameworks); NiFi (Big Data); NLPCraft (Incubating; Natural Language Processing); PLC4X (IoT); Qpid Broker (Messaging); Qpid Dispatch (Messaging); Skywalking (Application Performance Management); Tomcat (Servers).

The Apache Incubator is the primary entry path for projects wishing to become an official part of the ASF. EventMesh entered the Apache Incubator as a new podling this month. We invite you to review the many projects currently in development in the Apache Incubator http://incubator.apache.org/ .

# # #

To see our Weekly News Round-ups (published every Friday), visit https://blogs.apache.org/foundation/ and click on the calendar or hop directly to https://blogs.apache.org/foundation/category/Newsletter . For real-time updates, sign up for Apache-related news by sending mail to announce-subscribe@apache.org and follow @TheASF on Twitter. We appreciate your support!

Posted at 02:31PM Mar 01, 2021 by Swapnil M Mane in Newsletter  |   | 

The Apache News Round-up: week ending 26 February 2021

Farewell, February --we're wrapping up the month with another great week. Here are the latest updates on the Apache community's activities:

ASF Board – management and oversight of the business affairs of the corporation in accordance with the Foundation's bylaws. 
 - Next Board Meeting: 17 March 2021. Board calendar and minutes https://apache.org/foundation/board/calendar.html

ASF Fundraising – oversees numerous ways to offset the ASF's day-to-day operating costs to help the ASF continue to provide $22B+ in software at 100% no cost.
 - The Apache® Software Foundation Sustains its Mission of Providing Software for the Public Good through Corporate Sponsorships and Charitable Giving https://s.apache.org/8foo2

Apache Diversity & Inclusion – initiatives that promote diversity, equity, and inclusion across the greater Apache community.
 - Call for Apache project proposals and mentors: Outreachy Open Source internship program May-Aug 2021 https://s.apache.org/s7tz2

ASF Infrastructure – our distributed team on three continents keeps the ASF's infrastructure running around the clock.
 - 7M+ weekly checks yield uptime at 99.96%. Performance checks across 50 different service components spread over more than 250 machines in data centers around the world. http://www.apache.org/uptime/

Apache Code Snapshot – Over the past week, 377 Apache Committers changed 2,654,647 lines of code over 3,605 commits. Top 5 contributors, in order, are: Andrea Cosentino, Claus Ibsen, Gary Gregory, Mark Miller, and Daan Hoogland.          

Apache Project Announcements – the latest updates by category.

Big Data --
 - Apache Qpid Broker J 7.1.12 and J 8.0.4 released https://qpid.apache.org/
 - Apache Beam 2.28.0 released https://beam.apache.org/
 - Apache BookKeeper 4.13.0 released http://bookkeeper.apache.org/

Library --
 - Apache Commons Net 3.8.0 released https://commons.apache.org/proper/commons-net/

Network Client/Server --
 - Apache Directory Studio 2.0-0-M16 released https://directory.apache.org/studio/

Search --
 - Apache Lucene 8.8.1 and Solr 8.8.1 released http://lucene.apache.org/

Web Frameworks --
 - Apache MyFaces Core v2.3-next-M5 released http://myfaces.apache.org/

Did You Know?

- Did you know that SOPHIA, the new text-mined knowledge graph clinical decision support system created to improve doctors recommendations to patients, is powered by Apache cTAKES? http://ctakes.apache.org/

- Did you know that the Carnegie Mellon University Database Group's vaccination database processes billions of records per second using Apache Druid? Learn more at their free Vaccination Database Tech Talks on 1 March --presentations on Apache Pinot (incubating) and Apache CouchDB are in the series as well https://db.cs.cmu.edu/seminar2021/

- Did you know that video highlights of the ASF's 2020 Security Report are now available? https://youtu.be/Z7yudar_da0

Apache Community Notices

- Apache Month In Review: January 2021 https://s.apache.org/Jan2021 + Video highlights https://youtu.be/hWMonAbaprU

- The Apache Software Foundation Operations Summary: Q2 FY2021 (August - October 2020) https://s.apache.org/Q2FY2021

- Apache in 2020 - By The Digits https://s.apache.org/Apache2020Digits + Video highlights https://s.apache.org/Apache2020Digits-vid

- ASF Security Report 2020 https://s.apache.org/SecurityReport2020 + Video highlights https://youtu.be/Z7yudar_da0

- ASF FY2020 Annual Report https://s.apache.org/FY2020AnnualReport

- "Trillions and Trillions Served" documentary on the ASF: 1) full feature https://s.apache.org/Trillions-Feature 2) "Apache Everywhere" https://s.apache.org/ApacheEverywhere 3) "Why Apache" https://s.apache.org/ASF-Trillions 4) “Apache Innovation” https://s.apache.org/ApacheInnovation 

 - The Apache Way to Sustainable Open Source Success https://s.apache.org/GhnI

 - Foundation Reports and Statements http://www.apache.org/foundation/reports.html

 - All presentations from ApacheCon@Home are available at https://www.youtube.com/c/TheApacheFoundation/ 

 - "Success at Apache" focuses on the people and processes behind why the ASF "just works". https://blogs.apache.org/foundation/category/SuccessAtApache

Posted at 01:16PM Feb 26, 2021 by Swapnil M Mane in Newsletter  |   |