This is an automated email from the ASF dual-hosted git repository.
sebb pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/whimsy.git
The following commit(s) were added to refs/heads/master by this push:
new b773aa1c CSP is WIP
b773aa1c is described below
commit b773aa1c839dfd34039c073fe948beb8d6aa23ef
Author: Sebb <[email protected]>
AuthorDate: Wed Oct 29 23:51:17 2025 +0000
CSP is WIP
---
www/site_or_pod.rb | 5 +++++
1 file changed, 5 insertions(+)
diff --git a/www/site_or_pod.rb b/www/site_or_pod.rb
index 87bab9b8..ff61bd91 100644
--- a/www/site_or_pod.rb
+++ b/www/site_or_pod.rb
@@ -72,6 +72,11 @@ _html do
_ ' appear on a project homepage, along with an "image" check if
project logo files are in apache.org/img'
end
_p 'The script also checks for 3rd party resource references that
might be in conflict with our privacy policy.'
+ _p.bg_danger %{
+ The Content-Security-Policy (Csp) check is a work in progress:
+ it only checks that the default settings have not been over-ridden.
+ It does not check if the host exceptions have been approved.
+ }
_p! do
_a 'View the crawler code', href:
'https://github.com/apache/whimsy/blob/master/tools/site-scan.rb'
_ ', '
