Re: [All] Download page broken for several components
Le mar. 28 nov. 2023 à 18:39, sebb a écrit : > > Doh! Mea culpa. > > Turns out this issue had previously been solved, but during a clear-up > I managed to remove the work-rounds. > > Hopefully all now resolved. Yes; thanks! Gilles [...] - To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org For additional commands, e-mail: dev-h...@commons.apache.org
Re: [All] Download page broken for several components
Doh! Mea culpa. Turns out this issue had previously been solved, but during a clear-up I managed to remove the work-rounds. Hopefully all now resolved. Sebb On Tue, 28 Nov 2023 at 11:22, sebb wrote: > > On Mon, 27 Nov 2023 at 15:32, sebb wrote: > > > > On Mon, 27 Nov 2023 at 11:41, sebb wrote: > > > > > > I think the pages should be > > > > > > https://commons.apache.org/proper/commons-geometry/download_geometry.cgi > > > > > > etc. > > > > > > Looks like a missing redirect; will have a look later. > > > > There are redirects from https://commons.apache.org/COMPONENT/* to > > https://commons.apache.org/proper/commons-COMPONENT/* > > > > However, these do not work for *.cgi; there is some special processing > > in the HTTPD server that handles the TLP sites such as commons.a.o. > > > > It looks like it is not possible to use htaccess redirects to fix > > this; the TLP processing seems to happen first. > > The TLP CGI processing expects to find an HTML file in the same > directory as the CGI (before redirect); > if not it provides its own HTML file. > > This means that it will work if there is a file at the expected location. > I just tried this by adding a soft link directly to the production site: > > math/download_math.html -> ../proper/commons-math/download_math.html > > This seems to work. > > However, when the main site is next updated, this will likely disappear. > > In the long-term, I think the components should use the standard URL. > But as a work-round, such links could be added to the parent site. > I'll try to look at that later today. > > > Is this a new issue, or has this been happening for a while? > > > > Note that the overview Releases page works fine: > > https://commons.apache.org/downloads/index.html > > as do many components, e.g.: > > https://commons.apache.org/proper/commons-lang/ > > > > Sebb > > > > > > On Mon, 27 Nov 2023 at 02:55, Gilles Sadowski > > > wrote: > > > > > > > > Hello. > > > > > > > > For > > > > https://commons.apache.org/geometry/download_geometry.cgi > > > > https://commons.apache.org/math/download_math.cgi > > > > https://commons.apache.org/numbers/download_numbers.cgi > > > > https://commons.apache.org/statistics/download_statistics.cgi > > > > https://commons.apache.org/rng/download_rng.cgi > > > > much of the usual contents (namely links to "zip" and "tar" files) is > > > > missing. > > > > Page also does not correctly display the menus. logo, ... > > > > > > > > Gilles > > > > > > > > - > > > > To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org > > > > For additional commands, e-mail: dev-h...@commons.apache.org > > > > - To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org For additional commands, e-mail: dev-h...@commons.apache.org
[COMPRESS] Optimize the nameMap of ZipFile #378
Hi All, I'd like community feedback on whether it is OK to merge https://github.com/apache/commons-compress/pull/378 TY! Gary - To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org For additional commands, e-mail: dev-h...@commons.apache.org
Re: [VALIDATOR] - Release of newer version of validator without OWASP vulnerabilities
Henrique, I should also ask: If you look at git master, is there anything you see that needs updating? TY! Gary On 2023/11/23 02:31:26 Henrique Siqueira Santos wrote: > I was wondering how the updates for some of the apache commons libraries work > in regards to the vulnerabilities of dependencies of a library (in this case, > commons-validator). > > Is it possible to create a pull request with only upgrades of dependencies of > a library? For instance, in the commons-validator library, there are some > dependencies which contains vulnerabilities such as jUnit. Is a pull request > to upgrade jUnit from 4.13 to 4.13.2 valid? > > Another different example would be the commons-digester library which, from > what I've seen, has the 3.3-SNAPSHOT version on it's master branch which > contains some upgrades to those vulnerable dependencies, but it hasn't been > released yet. > > Is there a release cycle or release date planned for these changes? > - To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org For additional commands, e-mail: dev-h...@commons.apache.org
Re: [All] Download page broken for several components
On Mon, 27 Nov 2023 at 15:32, sebb wrote: > > On Mon, 27 Nov 2023 at 11:41, sebb wrote: > > > > I think the pages should be > > > > https://commons.apache.org/proper/commons-geometry/download_geometry.cgi > > > > etc. > > > > Looks like a missing redirect; will have a look later. > > There are redirects from https://commons.apache.org/COMPONENT/* to > https://commons.apache.org/proper/commons-COMPONENT/* > > However, these do not work for *.cgi; there is some special processing > in the HTTPD server that handles the TLP sites such as commons.a.o. > > It looks like it is not possible to use htaccess redirects to fix > this; the TLP processing seems to happen first. The TLP CGI processing expects to find an HTML file in the same directory as the CGI (before redirect); if not it provides its own HTML file. This means that it will work if there is a file at the expected location. I just tried this by adding a soft link directly to the production site: math/download_math.html -> ../proper/commons-math/download_math.html This seems to work. However, when the main site is next updated, this will likely disappear. In the long-term, I think the components should use the standard URL. But as a work-round, such links could be added to the parent site. I'll try to look at that later today. > Is this a new issue, or has this been happening for a while? > > Note that the overview Releases page works fine: > https://commons.apache.org/downloads/index.html > as do many components, e.g.: > https://commons.apache.org/proper/commons-lang/ > > Sebb > > > > On Mon, 27 Nov 2023 at 02:55, Gilles Sadowski wrote: > > > > > > Hello. > > > > > > For > > > https://commons.apache.org/geometry/download_geometry.cgi > > > https://commons.apache.org/math/download_math.cgi > > > https://commons.apache.org/numbers/download_numbers.cgi > > > https://commons.apache.org/statistics/download_statistics.cgi > > > https://commons.apache.org/rng/download_rng.cgi > > > much of the usual contents (namely links to "zip" and "tar" files) is > > > missing. > > > Page also does not correctly display the menus. logo, ... > > > > > > Gilles > > > > > > - > > > To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org > > > For additional commands, e-mail: dev-h...@commons.apache.org > > > - To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org For additional commands, e-mail: dev-h...@commons.apache.org