janhoy commented on code in PR #168:
URL: https://github.com/apache/solr-site/pull/168#discussion_r3060724868
##########
themes/solr/templates/security.html:
##########
@@ -1,78 +1,45 @@
-{% extends "page.html" %}
+{% extends "subnav.html" %}
+
+{% block subnav_header %}<style>.container { padding-top: 0; }</style>{%
endblock %}
+{% block subnav_nav_items %}{% set subnav_selected = 'security' %}{% include
"_subnav_security.html" %}{% endblock %}
{% block ng_directives %}x-ng-app-root="/solr"{% endblock %}
{% block rss %}<link rel="alternate" type="application/atom+xml" title="Solr
security announce feed" href="/feeds/solr/security.atom.xml" />{% endblock %}
{% block content_inner %}
<div class="small-12 columns">
- <style type="text/css">
- .headerlink, .elementid-permalink {
- visibility: hidden;
- }
- h2:hover > .headerlink, h3:hover > .headerlink, h1:hover > .headerlink,
h6:hover > .headerlink, h4:hover > .headerlink, h5:hover > .headerlink,
dt:hover > .elementid-permalink {
- visibility: visible;
- }
- </style>
- <h1 id="solr-news">Solr<sup>™</sup> Security News<a class="headerlink"
href="#solr-news" title="Permanent link">¶</a></h1>
+ <h1 id="solr-security">Solr<sup>™</sup> Security<a class="headerlink"
href="#solr-security" title="Permanent link">¶</a></h1>
{{page.content}}
- <h1 id="recent-cve-reports-for-apache-solr">Recent CVE reports for Apache
Solr</h1>
- <p>Below is a list of already announced CVE vulnerabilities. These are also
available as an <a href="/feeds/solr/security.atom.xml">ATOM feed</a>:</p>
+ <h2 id="recent-cve-reports-for-apache-solr">Recent CVE Reports for Apache
Solr
+ <a class="headerlink" href="#recent-cve-reports-for-apache-solr"
title="Permanent link">¶</a>
+ </h2>
+ <p>The five most recent security advisories.</p>
+
+ <table>
+ <tr>
+ <th width="130">CVE#</th>
+ <th width="95">Date</th>
+ <th>Announcement</th>
+ </tr>
+ {% for article in (articles | selectattr("category.name", "eq",
"solr/security")|list)[:5] %}
+ <tr>
+ <td>{% if article.cve %}<a href="https://nvd.nist.gov/vuln/detail/{{
article.cve }}">{{ article.cve }}</a>{% endif %}</td>
+ <td>{{ article.date | strftime("%Y-%m-%d") }}</td>
+ <td><a href="{{ SITEURL }}/security-news.html#{{ article.slug }}">{{
article.title | regex_replace('^CVE.*?: ', '') }}</a></td>
+ </tr>
+ {% endfor %}
+ </table>
+ <p><a href="{{ SITEURL }}/security-news.html">See full security news history
→</a></p>
- <table>
- <tr>
- <th width="130">CVE#</th>
- <th width="95">Date</th>
- <th>Announcement</th>
- </tr>
- {% for article in (articles | selectattr("category.name", "eq",
"solr/security")|list)[:15] %}
- <tr>
- <td>{% if article.cve %}<a
href="https://nvd.nist.gov/vuln/detail/{{ article.cve }}">{{ article.cve
}}</a>{% endif %}</td>
- <td>{{ article.date | strftime("%Y-%m-%d") }}</td>
- <td><a href="#{{ article.slug }}">{{ article.title |
regex_replace('^CVE.*?: ', '') }}</a></td>
- </tr>
- {% endfor %}
- </table>
+ <h2 id="more-information">More Information <a class="headerlink"
href="#more-information" title="Permanent link">¶</a></h2>
+ <ul>
+ <li><a href="{{ SITEURL }}/security-news.html">Full security news
history</a> — all past CVE advisories</li>
+ <li><a href="{{ SITEURL }}/security-dependency-cves.html">Dependency CVE
status and VEX download</a> — non-exploitable CVEs in dependencies</li>
+ <li><a href="{{ SITEURL }}/security-reporting.html">Vulnerability
reporting procedure</a> — submission rules, workflow, and PMC email
templates</li>
+ <li><a href="https://www.apache.org/security/";>ASF security resources</a>
— Apache-wide security guidance</li>
+ <li><a
href="https://cwiki.apache.org/confluence/display/SOLR/SolrSecurity";>Solr
Security Wiki</a> — additional documentation</li>
Review Comment:
This wiki page is ooooold, and I don't think it adds any value now
```suggestion
```
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
