3.68.1.02-1

• Update to Nexus 3.68.1-02

• Bugfixing:

  • CVE-2024-4956: Fix for a critical vulnerability impacting all Sonatype
    Nexus Repository 3 deployments. This vulnerability can
    allow a specially crafted URL to return any file as a
    download, including system files outside of Nexus
    Repository application scope.
    See https://support.sonatype.com/hc/en-us/articles/29416509323923
    for more details

• Update to Nexus 3.68.0-04 (not released separately due to CVE-2024-495)

• Bugfixing:

  • NEXUS-42263: SHA256 checksums are now generated for Helm in
    PostgreSQL environments
  • NEXUS-42006: Resolved an API issue related to policy-compliant component
    selection for PyPI where waived components were mistakenly
    returned as quarantined
  • NEXUS-41997: A DEBUG level logger is no longer required to see a
    DataAccessException message in the
    DatabaseDistributedCooperationRegistry
  • NEXUS-41903: Made various performance improvements for HA deployments
  • NEXUS-41602: Resolved improper realm caching for Conan
  • NEXUS-41486: Components REST API works as expected for group repositories
    in PostgreSQL deployments
  • NEXUS-41451: Users are able to reset their user tokens as expected in
    environments using remote user tokens
  • NEXUS-41442: NuGet "is_latest_version" and "is_absolute_latest_version"
    attributes update as expected during staging moves
  • NEXUS-41403: Database Migrator: Resolved an issue that was causing
    excessive DB Migrator logging
  • NEXUS-41384: Namespace confusion protection works as expected for PyPI and
    RubyGems repositories in deployments using a Postgres database
  • NEXUS-41372: Resolved an issue that was sometimes causing the compact blob
    store task to cause an out-of-memory error
  • NEXUS-41337: Database Migrator: Resolved an issue that was causing database
    migration to fail and misreport problem records on ERROR:
    insert or update on table "asset" violates foreign
    key constraint "fk_asset_blob."
  • NEXUS-41334: Nexus Repository now creates a single task rather than
    multiple tasks when migrating Yum metadata into the database
    during upgrade
  • NEXUS-41285: User tokens work on Yum group repositories as expected when
    Require User Tokens for Repository Authentication is enabled
  • NEXUS-40344: Requests for GA-level metadata that needs to be rebuilt no
    longer automatically starts a rebuild of the full
    metadata tree
  • NEXUS-39956: Removed "nexus-hazelcast-plugin" from the source tree
  • NEXUS-39507: Improved error messaging when users attempt to use
    Import/Export across different Nexus Repository versions; as
    stated in the Import help documentation
    (https://help.sonatype.com/en/repository-import.html),
    Nexus Repository does not support importing files from an
    older Nexus Repository version
  • NEXUS-38651: Uploading to a raw repository with PUT will generate md5,
    sha1, sha256, and sha512 checksums. This is introduced as a
    new feature but also recorded in this table for customers who
    were following this issue ID
  • NEXUS-38451: Made adjustments so that Nexus Repository generates fewer
    browseComponentAssets SQL queries when finding packages by ID
    in NuGet v2 proxy repositories
  • NEXUS-34192: Resolved an issue with SAML authentication related to
    the NXSESSIONID
  • NEXUS-31745: Improved error messaging on Tag API when invalid continuation
    token is passed in

• Improvements:

  • Nexus Repository Pro deployments using a PostgreSQL database can now see
    repository sizes displayed in the repositories listing under
    "Administration → Repository → Repositories" (PRO Only)
  • Uploading to Raw Repository with API now also generates SHA256 and
    SHA512 Checksums
  • When creating a new role or modifying the applied privileges and roles for
    an existing role, administrators can now use an asterisk as a wildcard in
    the search bar
  • Users and administrators can now see more detailed information about the
    "Repair - Rebuild repository browse" task’s progress as it runs. The task
    management table under "Administration → Tasks" now displays the task’s
    completion percentage to provide more insight into how long the task will
    take to complete. We will continue to add this functionality in future for
    additional tasks
  • Sunsetting of Legacy High Availability Clustering. HA-C is fully removed
    from Nexus Repository, and additional features or bug fixes related to
    legacy HA-C will no longer be provided. Sonatype Support will provide
    best-effort guidance to help PRO customers adopting one of the newer High
    Availability deployment solutions. Se also help documentation for:
    • Migrating to an HA deployment from Legacy HA-C
      https://help.sonatype.com/en/migrating-to-an-ha-deployment-from-a-legacy-ha-c-or-a-resilient-deployment.html
    • Migrating from legacy HA-C to a single instance deployment
      https://help.sonatype.com/en/migrating-from-legacy-ha-c-to-a-single-instance.html
      Nexus Repository will not start for any deployments that use legacy HA-C,
      ensure you have migrated off of legacy HA-C before upgrading to version
      3.68.0 or beyond
    • Dependency Updates in 3.68.0:
      • Updated axios from 0.21.4 to 0.27.2
      • Updated jackson2 from 2.15.3 to 2.17.0

3.67.1.01-1

• Update to Nexus 3.67.1-01
• Bugfixing:
  • Critical Bug Fixes: Release 3.67.1 fixes two bugs found in the
    3.67.0 release: One impacting those who upgraded to 3.67.0 and then
    modified any previously existing Docker or Maven cleanup policies that
    were configured to retain select recent versions, and one preventing
    Docker subdomain routing from functioning
• Deprecation notice:
  • The legacy HA-C feature (Upcoming High Availability Clustering (HA-C)
    Sunset) will be sunset on April 17, 2024. The next release will remove
    the HA-C functionality in our May release.
    If you are still using HA-C, you should follow
    https://help.sonatype.com/en/migrating-to-an-ha-deployment-from-a-legacy-ha-c-or-a-resilient-deployment.html

3.67.0.03-2

• No code changes, only two important caution notes from Sonatype. I decided
  to create 3.67.0.03-2 so users already in 3.67.0.03-1 at least can get
  this warning on the changelogs. Sonatype decided to just remove Nexus
  3.67.0-03 (tagged as 3.67.0.03-1 for the RPM) from their site.
• Sonatype is aware of a critical known cleanup policy issue in 3.67.0
  impacting those who meet the following criteria:
  • You had previously configured a cleanup policy with the ability to retain
    select latest versions (feature introduced in 3.65.0)
  • You recently upgraded to 3.67.0
  • You then modified a cleanup policy that had previously included the
    ability to retain select latest versions
    This issue prevents cleanup policies from honoring the configured ability
    to retain select latest versions. Running the "Admin - Cleanup repositories
    using their associated policies" task may soft delete more than intended,
    which would result in full removal should the "Admin - Compact blob store"
    task then run.
    CAUTION: If you meet the above criteria, DO NOT RUN the "Admin - Compact
    blob store" task
    CAUTION: If you have upgraded to 3.67.0 and are using cleanup policies
    with the ability to retain select latest versions, do not modify your
    cleanup policies
• Sonatype is aware of a known issue preventing our Docker Subdomain Routing
  feature from functioning in Sonatype Nexus Repository 3.67.0
  CAUTION: If you are using Docker Subdomain Routing, do not upgrade
  to 3.67.0
  Sonatype announced they will release a fix for this issue as soon
  as possible

3.67.0.03-1

• Update to Nexus 3.67.0-03
• Bugfixing:
  • NEXUS-41832: Database Migrator: Fixed an issue that was causing some
    migrations to a PostgreSQL or H2 database to fail due to
    incorrect asset_blob_id values when assets only differed by a
    version number in their paths
  • NEXUS-41312: Resolved an issue that was causing expensive queries from
    getComponentCount
  • NEXUS-41286: Resolved an issue that was causing an internal task to throw
    an error when running in some large deployments
  • NEXUS-41269: Support zips from deployments using PostgreSQL that was
    configured using system properties now display information
    as expected
  • NEXUS-41263: Added logging for routing rule blocked requests done via
    group repository
  • NEXUS-40997: Added an error message to the UI that displays when a user
    without the correct privileges attempts to save a
    content selector
  • NEXUS-40952: The security/users///user-token-reset REST
    API will now provide a 400 error if the realm passed
    is invalid.
    The users REST API can accept the following realm names
    associated with user tokens: LdapRealm, Crowd, SamlRealm,
    and NexusAuthenticatingRealm.
  • NEXUS-36989: Selecting the Analyze Application button in component details
    now displays the expected form
• Improvements:
  • Java 11 Support. Nexus 3.67.0 allows running on top of Java 11, but for
    now the package will remain using Java 1.8 by default until a future
    update, probably some time after CentOS7 is end of life
  • Updated Groovy dependency from 2.4.17 to 3.0.19
  • Updated PostgreSQL database driver from 42.6.0 to 42.7.2

3.66.0.02-1

• Update to Nexus 3.66.0-02
• Bugfixing:
  • NEXUS-41360: Database Migrator: Resolved an issue that was causing some
    older versions of the Database Migrator to require very
    high heap
  • NEXUS-41096: Added a new script to the help documentation for those on
    PostgreSQL or H2 migrating from LDAP to SAML user tokens
  • NEXUS-41062: The merged metadata summary on the Browse screen now shows
    the correct information for group Maven repositories
  • NEXUS-41068: Resolved an issue where the support zip download was not
    working as expects in HA environments with a
    nexus-context-path
  • NEXUS-41052: The metadata for hosted npm repositories in PostgreSQL
    deployments no longer duplicates the "_id" property
  • NEXUS-40983: NuGet searches with the -PreRelease option now return the
    expected results
  • NEXUS-40900: Fixed an issue with HA nodes upgrading before nodes with
    older versions have been shut down. Startup will halt with a
    warning until the older nodes have been gracefully shut down
  • NEXUS-40673: Resolved an issue where a 403 error message was displayed on
    the welcome page for anonymous users
  • NEXUS-40612: Disabling the usage metrics flag will also remove the metric
    aggregation task
  • NEXUS-40377: The custom search page will no longer display uncaught type
    errors when adding new criteria
  • NEXUS-39915: The migration of asset timestamp metadata will now be done as
    expected for raw repositories when moving from Nexus
    Repository 2 to 3. A fix for Maven and NuGet will be covered
    in a future release
  • NEXUS-39677: The blob store API now returns 404 response codes for
    non-existent S3 type blob store names
  • NEXUS-38842: The export assets task no longer logs WARN messages when
    running correctly
  • NEXUS-35478: The Swagger API UI documentation for repositories will now
    show that the "blobStoreName" parameter is mandatory
  • NEXUS-32494: Database Migrator: The database migrator tool will not run
    for incompatible older versions of Nexus Repository while
    returning a message to upgrade
  • NEXUS-31786: Database Migrator: The database migrator tool now includes
    more details on assets when logging errors
  • NEXUS-28593: The InterruptedException will no longer be logged when
    recording a successful audit event
  • NEXUS-26581: Export will no longer report errors when the directory has
    not been pre-created
• Improvements:
  • Usage Alerts for Deployments Using Embedded Databases (PRO Only)
    To help customers identify when it is time to evaluate their deployment
    model, Sonatype Nexus Repository OSS and Pro deployments that use an
    embedded database (OrientDB or H2) will now see in-product warnings when
    usage levels approach or exceed certain thresholds
  • Visual Progress Tracking forRepair - Rebuild repository browseTask
    When running the "Repair - Rebuild repository browse" task, the Status
    updates to show users how many assets are completed out of the total
    number of assets that must be processed. This improvement applies to
    deployments using PostgreSQL and H2 databases only
  • User Interface Improvements for Roles
    User interface is modified to move away from the previous transfer list
    methodology. Now, administrators will see a single column listing applied
    privileges and a button to modify the privileges applied to that role.
    Selecting the button opens a modal where administrators can filter by
    keyword and select privileges to apply to that role
  • Dependency changes:
    • org.jboss.resteasy: resteasy-multipart-provider: 3.15.3.Final upgraded
      to 3.15.6.Final
    • AWS SDK dependencies upgraded from from 1.12.299 to 1.12.658

3.65.0.02-1

• Update to Nexus 3.65.0-02
• Bugfixing:
  • Many improvements to component search in high availability (HA)
    environments in this release to make searching and tagging more precise.
    Due to these changes, the same search query should now return fewer but
    more precise results
    Please keep this behavior change in mind when looking at your previously
    configured search and tagging queries
    Please also see the HA search differences documentation for full details
    about how HA search differs from non-HA search:
    https://help.sonatype.com/en/high-availability-deployment-options.html#search-feature-differences-in-an-ha-environment-161963
  • NEXUS-34334: If the rebuild index task triggers an ElasticSearchException,
    one repository failing will no longer prevent task completion
    or affect the other repositories. Added an error message to
    alert the user if a repository does fail
  • NEXUS-34968: Attempting to download an asset with a missing blob from a
    proxy repository in a PostgreSQL or H2 deployment no longer
    results in an immediate 500 error. Sonatype Nexus Repository
    automatically attempts to re-fetch the asset from remote
    as expected
  • NEXUS-36807: Made changes to improve cleanup policy preview performance
  • NEXUS-39665: Resolved an issue that was preventing some installations of a
    package from a group repository with a certain private proxy
    repository member
  • NEXUS-39881: The package-specific index page for a Python package
    requested from a proxy repository now displays the
    non-truncated package name as expected
  • NEXUS-40111: Resolved an issue that was causing some Yum assets to be
    shown as "components" in the Sonatype Nexus Repository UI
  • NEXUS-40213: Addressed an issue impacting HA deployments where tokens
    after a wildcards in component searches were being dropped
    (e.g. for searches like “nexus*core”).
  • NEXUS-40378: Searching components by exact tag in an HA environment now
    returns an exact match as expected
  • NEXUS-40680: Associating a tag with a component used to operate on a
    loose match; it now uses an exact match as expected.
    For example, associating a tag with a .jar with the version
    "1.0.0" used to associate that tag with all components that
    had "1.0.0" in the version number. Now, it will associate
    with the exact version match only unless you use a wildcard
  • NEXUS-40987: Resolved an issue that was causing some PostgreSQL HA
    deployments to have excessive errors written to logs despite
    requests working as expected
  • NEXUS-40994: In HA environments, performing an exact-match search for
    components where the group ID or artifact ID contain an
    underscore now returns exact-match results as expected
  • NEXUS-41211: Added clarifying documentation regarding changes in NuGet
    client compatibility with Sonatype Nexus Repository:
    Sonatype Nexus Repository release 3.43.0, added compatibility
    with official NuGet v2 clients. The supported subset of the
    legacy NuGet v2 protocol is the same as that supported by
    Microsoft's NuGet Gallery, http://nuget.org. Use cases that
    rely on the deprecated parts of the v2 API are not supported,
    including many common Chocolatey use cases and some custom
    OData queries
• Improvements:
  • Cleanup Policies for Maven and Docker Include Option to Retain
    Recent Versions (PRO Only)
    More powerful and flexible cleanup policies for Maven and Docker formats
    by allowing you to retain a certain number of most recent artifact
    versions regardless of if they meet other cleanup criteria
    Learn more about how to use this feature in the cleanup policies
    help documentation:
    https://help.sonatype.com/en/cleanup-policies.html
  • Significant Cleanup Performance Improvements for Pro Deployments Using a
    PostgreSQL Database (PRO Only)
    Running the original cleanup feature often takes significant time.
    This release has changes to significantly improve cleanup performance for
    those using a PostgreSQL database. The new cleanup feature takes an
    average time per component of 10.6 ms versus 17.2 ms for the original
    cleanup feature
    With this release, all Sonatype Nexus Repository Pro deployments using a
    PostgreSQL database will use the new cleanup implementation
    For more information, check the detailed Cleanup Performance Data:
    https://help.sonatype.com/en/cleanup-performance-data.html
  • Change Repository Blob Store Task Supports Group Repositories (PRO Only)
    While the "Admin - Change repository blob store" task originally supported
    hosted repositories only, Sonatype added support for using this task on
    proxy repositories last year. Now, Sonatype Nexus Repository Pro
    deployments on PostgreSQL databases can use this task on group
    repositories as well.
    Note that when you use this task on a group repository, it will only move
    metadata assets directly related to the group repository content id;
    it does not move or affect data in the repositories that are
    group members. Using this task on group repositories also requires a
    PostgreSQL database.
    Full details are available in the change repository blob store
    help documentation:
    https://help.sonatype.com/en/change-repository-blob-store.html

3.64.0.03-1

• Update to Nexus 3.64.0-03
• Bugfixing:
  • NEXUS-23410: If previously configured SAML IdP field mapping
    values change, Sonatype Nexus Repository will update the
    user's profile with the new values as expected
  • NEXUS-31215: Fixed an issue that was causing some PyPi assets to be
    missing from the Browse screen after migrating from OrientDB
    to PostgreSQL
  • NEXUS-32028: Changed the logging level from WARN to DEBUG in the blobstore
    class that tracks attributes of an asset being accessed in an
    unexpected soft-deleted state. This will prevent spamming the
    main nexus.log with messages at a WARN level for operations
    considered normal when running the compact blob store task
  • NEXUS-35207: Fixed an issue that was preventing the GA last-modified date
    from being updated in the maven-metadata.xml when deploying a
    new GAV in some instances after migrating from Sonatype Nexus
    Repository 2 to 3. As part of this fix, the Last Modified
    date is no longer visible in the Browse UI view; you can
    still tell when the maven-metadata.xml was last updated by
    looking at the Blob Updated date in the UI or using the
    REST API
  • NEXUS-35741: Added validation to prevent users from updating an existing
    task with an invalid cron_expression
  • NEXUS-35956: Resolved an issue that was breaking pagination when a given
    Docker repository is inside of a group
  • NEXUS-38856: The NotFoundCache is not populated with paths when a
    repository is in an auto-blocked or manually blocked state
  • NEXUS-39935: There is no longer an error when installing pods
    ('OpenSSL-Universal', '1.1.1100') via a Sonatype Nexus
    Repository 3 Cocoapods proxy repository
  • NEXUS-40140, NEXUS-40712: The import and export tasks work as expected on
    npm assets without unexpectedly skipping any and while
    correctly preserving attributes
  • NEXUS-40345: Resolved an issue that was preventing certain npm packages
    from being proxied from the official registry. This fix
    included the following dependency version changes:
    + upgraded jackson version from 2.15.0 to 2.15.3
    + upgraded snakeyaml version from 2.0 to 2.2
    + upgraded swagger version from 1.6.2 to 1.6.11
  • NEXUS-40495: Increased the browse node sequence limit for H2 and
    PostgreSQL implementations so that the database schema will
    not run out of sequence values.
  • NEXUS-40514: Any attempt to change the blob store of an existing
    repository via the REST API will be rejected with an HTTP 400
    response
  • NEXUS-40610: Resolved an issue that was preventing some users from
    uploading Jruby gems with "-java" in their version names to
    hosted ruby repositories
  • NEXUS-40639: FluentAssets and FluentComponents are now able to retrieve
    assets in group repository storage
  • NEXUS-40771: Using "%3A" or a colon for URL encoded strings in raw
    repositories now works as expected
  • NEXUS-40775: Database Migrator: Made filtering change to reduce load on
    the database migrator, improving database migrator performance
  • NEXUS-40808: Database Migrator: The database migrator now gracefully
    handles characters that PostgreSQL does not support
• Improvements:
  • Dependency Changes:
    • logback-classic and logback-core updated to 1.2.13
    • upgraded jackson version from 2.15.0 to 2.15.3
    • upgraded snakeyaml version from 2.0 to 2.2
    • upgraded swagger version from 1.6.2 to 1.6.11

3.63.0.01-1

• Update to Nexus 3.63.0-01
• Bugfixing:
  • NEXUS-40623: Adjusted regex to handle requests for NuGet v3 versions with
    double hyphens
  • NEXUS-40621: Sonatype Nexus Repository deployments using PostgreSQL will
    appropriately return a 204 response when a user re-deploys a
    component with the same tag to hosted repository when
    re-deploy is allowed
  • NEXUS-40491: Resolved an issue where running the "Repair - Reconcile
    component database from blob store" task with the integrity
    check option enabled did not remove some assets even though
    their .properties files did not exist
  • NEXUS-40421: Resolved an issue with the nexus.azure.server property not
    being set properly
  • NEXUS-40244: The Reconcile component database from blob store task
    restores only the expected blobs with the created/updated
    times matching the originals
  • NEXUS-40007: Conditional Get (If-Modified-Since) on Yum group repo
    metadata now appropriately returns a 200 response
    when expected
  • NEXUS-39826: You are now able to proxy RubyGems.org escape gem
  • NEXUS-39675: PyPI package versions published using twine before upgrading
    to 3.41.0 or later are now discoverable as expected.
    The “Generate Missing SHA256 Checksums” and “Delete Index
    Asset MD5 Metadata” tasks now run automatically after upgrade
  • NEXUS-39567: You are now able to proxy the RubyGems.org abstract gem
  • NEXUS-39464: Proxying scoped npm packages with an underscore in the name
    now works without issue
  • NEXUS-39227: Proxying PyPI repositories with policy-compliant component
    selection enabled is now appropriately incorporated into
    etag updates
  • NEXUS-38587: Searching for Docker images with names containing a "/"
    character now works as expected
  • NEXUS-36415: Resolved an issue that was causing cached proxied NuGet
    package metadata that cannot be parsed to prevent content
    from being updated from remote
• Improvements:
  • Enhancements to HA Helm Chart: Removed version numbers from Kubernetes
    objects that the Helm chart creates. Now it is possible to add custom
    labels and selectors. If you have existing volumes and volume mounts,
    you can also use those rather than having the Helm chart create new ones
  • Additional Audit Logging:
    • For SAML, log user login, logout, and config-changed events are
      now logged
    • For local authentication, LDAP, and Crowd, user login and logout
      events are now logged
  • Filter by Blob Store Name: The Repositories table filter to was enhanced
    to ensure you can search by blob store name. Simply type the blob store
    name into the table’s filter box to filter by blob store name
  • Dependency Upgrades: org.apache.santuario updated from version 2.3.0 to
    2.3.4 and org.json updated to 20231013

3.62.0.01-1

• Update to Nexus 3.62.0-01
• Bugfixing:
  • NEXUS-40526: Fixed a display issue that was causing tag associations to be
    missing from on raw components after migration to PostgreSQL.
    Note: this was a display issue only and did not result in any
    missing data
  • NEXUS-40425: Fixed an issue that existed in version 3.61.0 that was
    preventing startup when .bak files existed under
    restore-from-backup
  • NEXUS-40423: Resolved an issue in 3.61.0 where duplicate user tokens were
    breaking upgrades. Upgrades now succeed and will detect
    duplicate rows and produce a log warning
  • NEXUS-40313: User tokens work as expected with Conan repositories
  • NEXUS-40196: Created an advanced option for Sonatype Nexus Repository Pro
    customers to clean up identical Docker image layers
    across repositories.
    See https://support.sonatype.com/hc/en-us/articles/22490107929619
    for full details
  • NEXUS-40120: Made changes to reduce the number of queries performed when
    running Nuget V2 FindPackagesById in PostgreSQL environments
  • NEXUS-39411: Resolved a database migrator issue that was causing some
    NuGet downloads to fail after migrating to PostgreSQL
  • NEXUS-39150: Resolved a concurrency issue that was ocurring when running
    Staging move and Cleanup unused assets task at the same time
  • NEXUS-38850: The database migrator --healthcheck option now also checks
    the configuration database for corruptions in config classes
  • NEXUS-38257: Repository configuration changes that occur while a search
    reindex task is running cause a lock exception after waiting
    for 60 seconds; however, the repository now stays in a
    stable state. A subsequent try to save the config change now
    works as expected once the long-running task is complete
  • NEXUS-36836: Running the DeadBlobsFinder groovy script against a large
    database no longer causes out of memory errors
  • NEXUS-32009: The last-modified date for hosted yum repositories now
    matches the metadata rebuild date after migrating from
    OrientDB to H2
  • NEXUS-22262: Made changes to address multiple issues that were causing
    build failures due to failing to return maven-metadata.xml
    from a group repository
• Improvements:
  • New Cleanup Preview Experience for Pro Customers Using PostgreSQL (PRO Only)
    See https://help.sonatype.com/repomanager3/nexus-repository-administration/repository-management/cleanup-policies
  • Azure HA Performance Data (PRO Only)
    See https://help.sonatype.com/repomanager3/product-information/sonatype-nexus-repository-system-requirements/system-requirements-for-high-availability-deployments/sonatype-nexus-repository-high-availability-performance-data-using-azure
  • Support Zip Improvements:
    HA deployments will now see a button that allows configuring the support
    zip options once but generate support zips for all nodes
    The download link for a node's latest support zip also remains available
    even if navigating away from and back to the Support Zip page
  • Expanded Audit Logging:
    The audit log now includes records for "Clear Cache" and
    "Change (server) order" LDAP events
    Added logging for the creation, update or removal of routing rules
  • Deployment Pattern Library:
    New library of deployment patterns specifically designed to address three
    primary concerns: resiliency, scalability, and distribution
    https://help.sonatype.com/repomanager3/planning-your-implementation/deployment-pattern-library
  • Notable Dependency Changes:
    Upgraded Jetty from version 9.4.51.v20230217 to version 9.4.53.v20231009
    Upgraded goodies from version 2.3.5 to version 2.3.6
    Upgraded eclipse-sisu from version 0.3.4 to version 0.3.5
    Upgraded guice from version 5.0.1 to version 6.0.0
  • High Availability-Clustering (HA-C) is now in extended maintenance and
    will be officially sunset in April 2024. Full details can are available at
    https://help.sonatype.com/docs/sonatype-sunsetting-information/sonatype-nexus-repository-3-feature-status
    and https://help.sonatype.com/docs/sonatype-sunsetting-information

3.61.0.02-2

• Fix the macro for the service removal so the package builds again for
  openSUSE Tumbleweed and Factory