Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.367...7.21.0-rc.368

026-06-23 Release of logback version 1.5.35

• The 'condition' attribute in <if> elements now rejects unicode escape sequences (\u and \U). This closes a bypass of the existing prohibition on the new operator in Janino-evaluated conditions. This issue was reported by IcySun (icysun@qq.com) and registered as CVE-2026-13006.

• Added ConfiguratorRank.AUTHENTICATING (rank 100), the highest configurator rank, for certified/authenticating configurators discovered via the ServiceLoader mechanism. ContextInitializer now requires that at most one such configurator exist on the classpath; if more than one is found, initialization aborts with an error.

• ConsoleCharsetPropertyDefiner is no longer shipped. The Java 21 multi-release compilation of logback-core has been disabled, which removes this class from the published artifact. Configurations that referenced ch.qos.logback.core.property.ConsoleCharsetPropertyDefiner will need an alternative approach for console charset detection.

• The logback-examples module is now included in artifacts published to Maven Central.

• JoranConfigurator.makeAnotherInstance() and DefaultJoranConfigurator.performMultiStepConfigurationFileSearch() are now protected, allowing derived configurators to override these methods.

• A bitwise identical binary of this version can be reproduced by building from source code at commit 08bd1598d565d83444f72983935e7da4746783b7 associated with the tag v_1.5.35. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.366...7.21.0-rc.367

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.365...7.21.0-rc.366

• fix OOM problem when receive big response of SSE interface from backend by @thisAmateur in https://github.com/apache/servicecomb-java-chassis/pull/5148
• [#5087] upgrade netty/vertx version by @chengyouling in https://github.com/apache/servicecomb-java-chassis/pull/5149

• @thisAmateur made their first contribution in https://github.com/apache/servicecomb-java-chassis/pull/5148

Full Changelog: https://github.com/apache/servicecomb-java-chassis/compare/2.9.4...2.9.5

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.364...7.21.0-rc.365

• a9f24f0: [build] Upgrade @llvm to 0.8.9 (#17703) (David Burns) #17703
• 329b994: [rust] Use PKG again for Firefox macOS downloads (#17702) (David Burns) #17702
• c0b8ff6: [rb] trim whitespace around NO_PROXY entries (#17565) (Augustin Gottlieb) #17565

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.363...7.21.0-rc.364

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.362...7.21.0-rc.363