As planned, today we discussed the latest WiX v3 security release release, or, less confusingly, the release of the latest WiX v3 security release. But first...

Issue triage

Security release release

Ahead of schedule, on Saturday 18-November, Rob released the fix for the elevated bundle vulnerability we discussed last meeting. Ad-hoc testing across a few OSes didn't reveal any issues and proved the fix was taking effect. We got a few similar reports of success on the wix-devs mailing list. So today Rob posed the question of when we should ship the release as the new stable releases. I suggested we throw caution to the wind and do so immediately. Cooler heads suggested we more widely announce the build as the release candidate to get more input. So here's one announcement: