Skip to content

Releases: apache/maven

3.9.16

Choose a tag to compare

@github-actions github-actions released this 17 May 16:55
maven-3.9.16
2bdd9fd

🐛 Bug Fixes

📦 Dependency updates

3.9.15

Choose a tag to compare

@github-actions github-actions released this 17 Apr 09:19
maven-3.9.15
98b2cdb

📝 Documentation updates

📦 Dependency updates

3.9.14

Choose a tag to compare

@github-actions github-actions released this 12 Mar 11:53

🐛 Bug Fixes

📦 Dependency updates

3.9.13

Choose a tag to compare

@github-actions github-actions released this 06 Mar 12:39

🐛 Bug Fixes

  • Bug: SecDispatcher is managed by legacy Plexus DI (#11711) @cstamas
  • [3.9.x] MavenPluginJavaPrerequisiteChecker: Handle 8/1.8 Java version in ranges as well (#11577) @cstamas

👻 Maintenance

📦 Dependency updates

3.9.12

Choose a tag to compare

@github-actions github-actions released this 16 Dec 21:09
maven-3.9.12
848fbb4

🚀 New features and improvements

🐛 Bug Fixes

📝 Documentation updates

👻 Maintenance

🔧 Build

📦 Dependency updates

4.0.0-rc-5

4.0.0-rc-5 Pre-release
Pre-release

Choose a tag to compare

@github-actions github-actions released this 13 Nov 14:07

Notes

This new release candidate of Maven 4 is released to get feedback from users.
Maven 4 has a restrained a few things comparent to Maven 3, so make sure to run the mvnup tool before trying to project with Maven 4.

Bean configuration bug

A bug has been found in the bean configuration system where field accessibility state is cached globally. This can cause plugin configuration injection to fail when the same configuration field is accessed multiple times or in different contexts during a build. This particularly affects the plugin unit tests.

This will be fixed by #11433 in the next release.

Concurrency issue in the v4 API

A concurrency issue has been found in the Maven 4 API (still in preview mode) and will be fixed by #11428 in the next release.

BOM packaging

Another bug has been found in how BOM projects are processed. When a project uses BOM packaging, the consumer POM is not being properly converted to standard POM packaging, and dependency versions could be lost in some cases.

This will be fixed by #11427 in the next release.

macOS: JLine native library may be blocked by Gatekeeper on first use

On macOS (especially Apple Silicon), the first invocation of mvn may fail to load the JLine native terminal library with an error such as:

java.lang.UnsatisfiedLinkError: .../libjline-native/Mac/arm64/libjlinenative.jnilib: dlopen(...): code signature ... not valid for use in process: library load disallowed by system policy

This occurs when the binary distribution is downloaded via a web browser, which applies the com.apple.quarantine extended attribute.

Workaround (one-time fix):

xattr -r -d com.apple.quarantine /path/to/apache-maven-4.0.0-rc-5/lib/jline-native

Recommended download method (avoids the issue entirely):

curl -L -O https://archive.apache.org/dist/maven/maven-4/4.0.0-rc-5/binaries/apache-maven-4.0.0-rc-5-bin.tar.gz
tar -xzf apache-maven-4.0.0-rc-5-bin.tar.gz

This is a known issue #10747 and will be addressed in a future release.

💥 Breaking changes

  • Disable consumer POM flattening by default and add an opt-in feature (#11347) (#11370) @gnodet

🚀 New features and improvements

🐛 Bug Fixes

Read more

3.9.11

Choose a tag to compare

@github-actions github-actions released this 15 Jul 21:17
maven-3.9.11
3e54c93

🚀 New features and improvements

  • Augment version range resolution used repositories (#2574) @cstamas

🐛 Bug Fixes

👻 Maintenance

🔧 Build

📦 Dependency updates

4.0.0-rc-4

4.0.0-rc-4 Pre-release
Pre-release

Choose a tag to compare

@github-actions github-actions released this 25 Jun 11:39

Maven 4.0.0-rc-4 aims at being the last release candidate before Maven 4.0.0 GA. We'll focus on fixing critical bugs raised before GA.
Worth mentioning is the new upgrade tool which can be used to fix your pom.xml files and make them usable in Maven 4.

🚀 New features and improvements

🐛 Bug Fixes

📝 Documentation updates

👻 Maintenance

Read more

3.9.10

Choose a tag to compare

@slawekjaranowski slawekjaranowski released this 05 Jun 20:20
maven-3.9.10
5f519b9

Release Notes - Maven - Version 3.9.10

Bug

  • [MNG-8096] - Inconsistent dependency resolution behaviour for concurrent multi-module build can cause failures
  • [MNG-8169] - MINGW support requires --add-opens java.base/java.lang=ALL-UNNAMED
  • [MNG-8170] - Maven 3.9.8 contains weird native library for Jansi on Windows/arm64
  • [MNG-8211] - Maven should fail builds that use CI Friendly versions but have no values set
  • [MNG-8248] - WARNING: A restricted method in java.lang.System has been called
  • [MNG-8256] - ProjectDependencyGraph bug: in case of filtering, non-direct module links are lost
  • [MNG-8315] - Failure of mvn.cmd if a .mvn directory is located at drive root
  • [MNG-8396] - Maven takes forever to resume
  • [MNG-8711] - "Duplicate artifact" in LifecycleDependencyResolver

Improvement

  • [MNG-8370] - Introduce maven.repo.local.head
  • [MNG-8399] - JDK 24+ issues warning about usage of sun.misc.Unsafe
  • [MNG-8707] - Add methods to remove compile and test source roots
  • [MNG-8712] - improve dependency version explanation: it's a requirement, not always effective version
  • [MNG-8717] - Remove maven-plugin-plugin:addPluginArtifactMetadata from default binding
  • [MNG-8722] - Use a single standalone version of asm
  • [MNG-8731] - Use https for xsi:schemaLocation in generated descriptors
  • [MNG-8734] - Simplify scripting like "get project version" cases

Task

  • [MNG-8728] - Bump Eclipse Sisu from 0.9.0.M3 to 0.9.0.M4 and use Java 24 on CI

Dependency upgrade

  • [MNG-8289] - Update Plexus annotations to 2.2.0
  • [MNG-8443] - Bump com.google.guava:guava from 33.2.1-jre to 33.4.0-jre
  • [MNG-8531] - Bump org.codehaus.plexus:plexus-utils from 3.5.1 to 3.6.0
  • [MNG-8532] - Bump commons-io:commons-io from 2.16.1 to 2.18.0
  • [MNG-8534] - Bump org.codehaus.mojo:buildnumber-maven-plugin from 3.2.0 to 3.2.1
  • [MNG-8635] - Bump com.google.guava:failureaccess from 1.0.2 to 1.0.3
  • [MNG-8636] - Bump com.google.guava:guava from 33.4.0-jre to 33.4.5-jre
  • [MNG-8640] - Bump org.apache.maven:maven-parent from 43 to 44
  • [MNG-8661] - Bump com.google.guava:guava from 33.4.5-jre to 33.4.6-jre
  • [MNG-8701] - Bump org.codehaus.plexus:plexus-interpolation from 1.27 to 1.28
  • [MNG-8702] - Bump org.codehaus.plexus:plexus-classworlds from 2.8.0 to 2.9.0
  • [MNG-8703] - Bump commons-io:commons-io from 2.18.0 to 2.19.0
  • [MNG-8704] - Bump com.google.guava:guava from 33.4.6-jre to 33.4.8-jre
  • [MNG-8705] - Bump commons-jxpath:commons-jxpath from 1.3 to 1.4.0
  • [MNG-8706] - Bump commons-cli:commons-cli from 1.8.0 to 1.9.0
  • [MNG-8715] - Bump org.fusesource.jansi:jansi from 2.4.1 to 2.4.2
  • [MNG-8716] - Bump resolver to 1.9.23
  • [MNG-8745] - Bump xmlunitVersion from 2.10.0 to 2.10.2

What's Changed

Read more

Maven 4.0.0-rc-3

Maven 4.0.0-rc-3 Pre-release
Pre-release

Choose a tag to compare

@gnodet gnodet released this 10 Mar 09:53

Release notes

Maven has entered the release candidate phase and aims to be finally released in a few weeks. Please give it a try and report errors.

Upgrading from Maven 3

Maven 4 brings a tons of changes. We've tried hard to maximise compatibility with Maven 3.x, but in order to have your build work with Maven 4, you will need to upgrade some plugins (such as maven-enforcer-plugin, maven-remote-resources-plugin, maven-shade-plugin, etc...) to their most recent versions.

If your build is leveraging Maven extensions, you may very well expect some breakage. Some extensions may need to be updated:

  • the useful, but unmaintained, os-maven-plugin extension has been replaced with at nisse extension.

Contact the extensions' developers team to know their plans regarding supporting to Maven 4.

Upgrading from Maven 4.0.0-rc-2

Important note about breaking changes: Maven 4.0.0-rc-3 includes changes in the new API that will require updates in plugin targeting the new API, especially relating to [MNG-8395] which adds a new <source> element to the model and redirects the <sourceDirectory> element. Plugin developers will need to update their code to work with these changes.

Change log

What's Changed

Read more