LEOS Pilot 3.1.2 - Security patch


This is a Joinup release of LEOS (pilot) which enables users to draft and edit legal texts in AkomaNtoso XML format.



Release package updated on 28 January 2022. Fixed configuration parameters in pom.xml file which were causing a error while running the package.  For any questions, do not hesitate to contact us at: DIGIT-LEOS-FEEDBACK@ec.europa.eu.



This release is a security patch for CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832.

This release is intended to provide an experience with the software and is stripped of several important components to enable ease of use.

  • This software is adapted to run on a local server for demo purposes and without proper security mechanisms;
  • This software provides two options for running CMIS repository (more information here):
    • Using the OpenCMIS InMemory repository version included with this LEOS distribution;
    • Using a persistent CMIS Open Source server version. To use and connect LEOS to persistent CMIS Open source, please go through document present at the following folder location inside this release {LEOS}/docs/CMIS Open Source/LEOS-CMISOpenSource-v1.0.0.pdf;
  • This software is still under active development so some features may be added, removed or changed over course of time.



To compile the supplied source files and run the generated WAR the following software should be configured:

  • Java SDK version 8.0
  • Maven version 3.3.9+
    • (Maven runtime memory might need to be set: MAVEN_OPTS=-Xms256m -Xmx512m)
    • (Maven settings, proxy and mirrors, might need to be adjusted to your environment and internet access requirements)
  • Supported browser is Google Chrome version 45+ (Mozilla Firefox ESR version 38.3 and Microsoft Internet Explorer version 11 are known to work with minor issues)


For more information, read README.txt file included in the release.