I recently upgraded my LimeSurvey install to 2.72.5+171121 and on November 26th got a message that there was a security update referencing 3.0.0-RC.3 (171113). I could not find a more current 2.x.x stable release. Can I safely ignore the security warning message?

Thanks, Norbert

3.0.0 RC3 is a Release Candidate. It is not yet a stable version, so unless you want to test the Release Candidate, don't update to this version. While a Release Candidate should be fairly stable, it might still have some problems. Stay with the 2.72 until 3.0. is anounced to be stable.

Hi,

The comfortUpdate checks that the security flag is off for the RC updates.
I gave it a test, just in case, and I can confirm everything is fine.

Please, use the comfortUpdate.

LouisGac wrote: Hi,

The comfortUpdate checks that the security flag is off for the RC updates.
I gave it a test, just in case, and I can confirm everything is fine.

Please, use the comfortUpdate.

Not quite sure what you are trying to say with that. He SHOULD update from the stable version to the Release Candidate?

Just saying that he (most probably) didn't use the comfortUpdate in the first place.

Where else would he get the security message from, if not from ComfortUpdate?

Ok, I'm going to be more clear:

I think he didn't updated to 171121 via the comfortUpdate. If he updated to 171121 via the comfortUpdate: he should not see the update message to RC as a security update.

I did, I do.

I always update via ComfortUpdate. I just did the update to 2.72.5+ 171121 yesterday and besides this update it also showed me the 3.0.0-RC.3 as an option.

I just got this for example:

ok thx, could reproduce this time (I didn't understood it was on the list screen).

Olle changed the notification system, and changed the CU notifications at the same time.
github.com/LimeSurvey/LimeSurvey/commit/...66b885d3218e170d5326

@Olle: can you fix that please?