[GitHub] [commons-bcel] timboudreau opened a new pull request, #125: Fix IAE when calling `toString(ConstantPool)` on a `Module` or `ModuleRequires`

timboudreau opened a new pull request, #125: URL: https://github.com/apache/commons-bcel/pull/125 Attempting to create a visitor over a `module-info.class` created on JDK 17.0.2, and visit Module and ModuleRequires instances, calling `toString(ConstantPool)` on them results in an

[jira] [Commented] (DAEMON-441) When installing a Windows service using Commons Daemon 1.3.0 the errorlevel is -1073741819

[ https://issues.apache.org/jira/browse/DAEMON-441?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17529145#comment-17529145 ] Brian Andle commented on DAEMON-441: I was able to test the 64bit version of the 1.3.1 dev build on

[jira] [Work logged] (COLLECTIONS-811) Consider integration Guava testlib tests

[ https://issues.apache.org/jira/browse/COLLECTIONS-811?focusedWorklogId=763202=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-763202 ] ASF GitHub Bot logged work on COLLECTIONS-811: -- Author: ASF

[GitHub] [commons-collections] ben-manes commented on pull request #301: [COLLECTIONS-811] Integrate Guava Testlib tests for Apache Commons Collections

ben-manes commented on PR #301: URL: https://github.com/apache/commons-collections/pull/301#issuecomment-598917 /cc @kevinb9n  -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific

[GitHub] [commons-io] garydgregory commented on pull request #352: chore(deps): Included dependency review

garydgregory commented on PR #352: URL: https://github.com/apache/commons-io/pull/352#issuecomment-128013 We use Dependabot already to look for dependency changes so I don't see the need for yet another dependency checker. -- This is an automated message from the Apache Git Service.

[jira] [Comment Edited] (IO-767) FileUtils will become unextendable in future according to @deprecated comment

[ https://issues.apache.org/jira/browse/IO-767?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528851#comment-17528851 ] Gary D. Gregory edited comment on IO-767 at 4/27/22 3:12 PM: - All FileUtils

[jira] [Commented] (IO-767) FileUtils will become unextendable in future according to @deprecated comment

[ https://issues.apache.org/jira/browse/IO-767?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528851#comment-17528851 ] Gary D. Gregory commented on IO-767: All FileUtils methods are static so there is nothing to inherit on

[GitHub] [commons-io] aherbert commented on pull request #351: chore: Set permissions for GitHub actions

aherbert commented on PR #351: URL: https://github.com/apache/commons-io/pull/351#issuecomment-071557 I am trying to find out if this is a security issue on our repos. The GH actions run using the permissions granted to the `GITHUB_TOKEN`. See [Permissions for the

[jira] [Created] (IO-767) FileUtils will become unextendable in future according to @deprecated comment

Paul Pogonyshev created IO-767: -- Summary: FileUtils will become unextendable in future according to @deprecated comment Key: IO-767 URL: https://issues.apache.org/jira/browse/IO-767 Project: Commons IO

[GitHub] [commons-io] naveensrinivasan commented on pull request #352: chore(deps): Included dependency review

naveensrinivasan commented on PR #352: URL: https://github.com/apache/commons-io/pull/352#issuecomment-1110955220 > I'm not sure if this is necessary. I think 99.% of our pull requests won't have a dependency, since Commons components try to have as little dependencies as possible. So,

[jira] [Commented] (DAEMON-435) While stopping service, service crashed with error 1067

[ https://issues.apache.org/jira/browse/DAEMON-435?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528764#comment-17528764 ] Mark Thomas commented on DAEMON-435: Without steps to reproduce this failure, this issue will

[jira] [Resolved] (DAEMON-442) ProcRun classpath limitation of 1010 characters truncates the classpath string for many libraries on the classpath

[ https://issues.apache.org/jira/browse/DAEMON-442?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mark Thomas resolved DAEMON-442. Fix Version/s: 1.3.1 Resolution: Fixed The size limit on the message component of the log

[GitHub] [commons-io] naveensrinivasan opened a new pull request, #352: chore(deps): Included dependency review

naveensrinivasan opened a new pull request, #352: URL: https://github.com/apache/commons-io/pull/352 > Dependency Review GitHub Action in your repository to enforce dependency reviews on your pull requests. > The action scans for vulnerable versions of dependencies introduced by package

[jira] [Work logged] (TEXT-215) NumericEntityUnescaper may miss decimal entity

[ https://issues.apache.org/jira/browse/TEXT-215?focusedWorklogId=762831=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-762831 ] ASF GitHub Bot logged work on TEXT-215: --- Author: ASF GitHub Bot

[GitHub] [commons-text] rbunel35 commented on pull request #310: TEXT-215: Prevent decimal numeric entities from wrongly including hexadecimal characters

rbunel35 commented on PR #310: URL: https://github.com/apache/commons-text/pull/310#issuecomment-1110932237 Hi, Thank you for the your answers. Indeed I understand that semicolon-less character entities do not form part of the specification, however as pointed by @kinow, virtually

[jira] [Commented] (DAEMON-442) ProcRun classpath limitation of 1010 characters truncates the classpath string for many libraries on the classpath

[ https://issues.apache.org/jira/browse/DAEMON-442?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528755#comment-17528755 ] Mark Thomas commented on DAEMON-442: This has nothing to do with Windows path name limits. > ProcRun

[jira] [Commented] (TEXT-211) TextStringBuilder equals method changed behaviour from 1.8 to 1.9

[ https://issues.apache.org/jira/browse/TEXT-211?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528754#comment-17528754 ] Gary D. Gregory commented on TEXT-211: -- The person who opened the ticket or I can do it (or anyone

[jira] [Work logged] (TEXT-215) NumericEntityUnescaper may miss decimal entity

[ https://issues.apache.org/jira/browse/TEXT-215?focusedWorklogId=762819=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-762819 ] ASF GitHub Bot logged work on TEXT-215: --- Author: ASF GitHub Bot

[GitHub] [commons-text] garydgregory commented on pull request #310: TEXT-215: Prevent decimal numeric entities from wrongly including hexadecimal characters

garydgregory commented on PR #310: URL: https://github.com/apache/commons-text/pull/310#issuecomment-1110914006 My personal opinion is that we should stick to a specific version of a specification, in this case W3C XML. If we also want to emulate what a browser does or what another

[GitHub] [commons-io] garydgregory commented on pull request #351: chore: Set permissions for GitHub actions

garydgregory commented on PR #351: URL: https://github.com/apache/commons-io/pull/351#issuecomment-1110910798 Thanks for the pointers @kinow  -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to

[jira] [Commented] (DAEMON-442) ProcRun classpath limitation of 1010 characters truncates the classpath string for many libraries on the classpath

[ https://issues.apache.org/jira/browse/DAEMON-442?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528748#comment-17528748 ] Gary D. Gregory commented on DAEMON-442: You can also ask Windows to accept longer path names:

[jira] [Work logged] (TEXT-215) NumericEntityUnescaper may miss decimal entity

[ https://issues.apache.org/jira/browse/TEXT-215?focusedWorklogId=762817=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-762817 ] ASF GitHub Bot logged work on TEXT-215: --- Author: ASF GitHub Bot

[GitHub] [commons-text] kinow commented on pull request #310: TEXT-215: Prevent decimal numeric entities from wrongly including hexadecimal characters

kinow commented on PR #310: URL: https://github.com/apache/commons-text/pull/310#issuecomment-1110909559 > https://www.w3.org/TR/REC-xml/#dt-charref > > Why are illegal entities allowed in the first place? Am I reading the specification incorrectly? The ';' character should be

[jira] [Work logged] (TEXT-215) NumericEntityUnescaper may miss decimal entity

[ https://issues.apache.org/jira/browse/TEXT-215?focusedWorklogId=762813=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-762813 ] ASF GitHub Bot logged work on TEXT-215: --- Author: ASF GitHub Bot

[GitHub] [commons-text] garydgregory commented on pull request #310: TEXT-215: Prevent decimal numeric entities from wrongly including hexadecimal characters

garydgregory commented on PR #310: URL: https://github.com/apache/commons-text/pull/310#issuecomment-1110903494 https://www.w3.org/TR/REC-xml/#dt-charref Why are illegal entities allowed in the first place? Am I reading the specification incorrectly? The ';' character should be

[GitHub] [commons-io] kinow commented on pull request #351: chore: Set permissions for GitHub actions

kinow commented on PR #351: URL: https://github.com/apache/commons-io/pull/351#issuecomment-1110898364 Not sure if this generated a CVE. It is an OpenSSF recommendation, however: https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions The closest CVE I could find

[GitHub] [commons-io] garydgregory commented on pull request #351: chore: Set permissions for GitHub actions

garydgregory commented on PR #351: URL: https://github.com/apache/commons-io/pull/351#issuecomment-1110894559 Is there a CVE reference for this? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to

[jira] [Updated] (TEXT-215) NumericEntityUnescaper may miss decimal entity

[ https://issues.apache.org/jira/browse/TEXT-215?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Bruno P. Kinoshita updated TEXT-215: Assignee: Bruno P. Kinoshita > NumericEntityUnescaper may miss decimal entity >

[jira] [Updated] (DAEMON-442) ProcRun classpath limitation of 1010 characters truncates the classpath string for many libraries on the classpath

[ https://issues.apache.org/jira/browse/DAEMON-442?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mark Thomas updated DAEMON-442: --- Priority: Minor (was: Major) > ProcRun classpath limitation of 1010 characters truncates the

[jira] [Commented] (DAEMON-442) ProcRun classpath limitation of 1010 characters truncates the classpath string for many libraries on the classpath

[ https://issues.apache.org/jira/browse/DAEMON-442?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528724#comment-17528724 ] Mark Thomas commented on DAEMON-442: This is just log truncation. The full class path will still be

[jira] [Commented] (DAEMON-442) ProcRun classpath limitation of 1010 characters truncates the classpath string for many libraries on the classpath

[ https://issues.apache.org/jira/browse/DAEMON-442?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528694#comment-17528694 ] Mark Thomas commented on DAEMON-442: Windows version ? > ProcRun classpath limitation of 1010

[jira] [Commented] (DAEMON-441) When installing a Windows service using Commons Daemon 1.3.0 the errorlevel is -1073741819

[ https://issues.apache.org/jira/browse/DAEMON-441?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528689#comment-17528689 ] Mark Thomas commented on DAEMON-441: You can find a development build of 1.3.1 at

[jira] [Commented] (TEXT-211) TextStringBuilder equals method changed behaviour from 1.8 to 1.9

[ https://issues.apache.org/jira/browse/TEXT-211?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528673#comment-17528673 ] Sébastien HARDEMAN commented on TEXT-211: - Hi [~ggregory]  Who is in charge of closing the Jira?

[jira] [Work logged] (TEXT-215) NumericEntityUnescaper may miss decimal entity

[ https://issues.apache.org/jira/browse/TEXT-215?focusedWorklogId=762752=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-762752 ] ASF GitHub Bot logged work on TEXT-215: --- Author: ASF GitHub Bot

[GitHub] [commons-text] rbunel35 commented on pull request #310: TEXT-215: Prevent decimal numeric entities from wrongly including hexadecimal characters

rbunel35 commented on PR #310: URL: https://github.com/apache/commons-text/pull/310#issuecomment-1110710442 Hello ! Do you have any news to give me about this fix ? Thanks in advance :) -- This is an automated message from the Apache Git Service. To respond to the message, please

[jira] [Commented] (TEXT-216) HTML 5.0 Entities are not supported

[ https://issues.apache.org/jira/browse/TEXT-216?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528641#comment-17528641 ] Richard Bunel commented on TEXT-216: It is the user who is providing the input. My need is to check

[jira] [Commented] (IO-279) Tailer erroneously considers file as new

[ https://issues.apache.org/jira/browse/IO-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17528636#comment-17528636 ] Apoorva Maheshwari commented on IO-279: --- Issue is also present in 2.11 version. Please check. > Tailer

[GitHub] [commons-text] kinow merged pull request #318: Set permissions for GH Actions

kinow merged PR #318: URL: https://github.com/apache/commons-text/pull/318 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail:

[GitHub] [commons-imaging] kinow merged pull request #217: Set permissions for GH Actions

kinow merged PR #217: URL: https://github.com/apache/commons-imaging/pull/217 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail:

[GitHub] [commons-text] kinow opened a new pull request, #318: Set permissions for GH Actions

kinow opened a new pull request, #318: URL: https://github.com/apache/commons-text/pull/318 Sibling of https://github.com/apache/commons-io/pull/351/ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go

[GitHub] [commons-imaging] kinow opened a new pull request, #217: Set permissions for GH Actions

kinow opened a new pull request, #217: URL: https://github.com/apache/commons-imaging/pull/217 Sibling of https://github.com/apache/commons-io/pull/351/ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to