Re: [VOTE] Release Apache Sling Testing JCR Mock 1.6.2
+1 regards, Karl On Thursday, February 23, 2023, Carsten Ziegeler wrote: > +1 > > Carsten > > On 22.02.2023 10:52, Radu Cotescu wrote: > >> Hi, >> >> We solved 1 issue in this release: >> https://issues.apache.org/jira/browse/SLING/fixforversion/12351708 >> >> Staging repository: >> https://repository.apache.org/content/repositories/orgapachesling-2720/ >> >> You can use this UNIX script to download the release and verify the >> signatures: >> https://gitbox.apache.org/repos/asf?p=sling-tooling-release. >> git;a=blob;f=check_staged_release.sh;hb=HEAD >> >> Usage: >> sh check_staged_release.sh 2720 /tmp/sling-staging >> >> Please vote to approve this release: >> >>[ ] +1 Approve the release >>[ ] 0 Don't care >>[ ] -1 Don't release, because ... >> >> This majority vote is open for at least 72 hours. >> >> Regards, >> Radu Cotescu >> > > -- > Carsten Ziegeler > Adobe > cziege...@apache.org > -- Karl Pauls karlpa...@gmail.com
Re: [VOTE] Release Apache Sling Testing JCR Mock 1.6.2
+1 Carsten On 22.02.2023 10:52, Radu Cotescu wrote: Hi, We solved 1 issue in this release: https://issues.apache.org/jira/browse/SLING/fixforversion/12351708 Staging repository: https://repository.apache.org/content/repositories/orgapachesling-2720/ You can use this UNIX script to download the release and verify the signatures: https://gitbox.apache.org/repos/asf?p=sling-tooling-release.git;a=blob;f=check_staged_release.sh;hb=HEAD Usage: sh check_staged_release.sh 2720 /tmp/sling-staging Please vote to approve this release: [ ] +1 Approve the release [ ] 0 Don't care [ ] -1 Don't release, because ... This majority vote is open for at least 72 hours. Regards, Radu Cotescu -- Carsten Ziegeler Adobe cziege...@apache.org
Re: [VOTE] Release Apache Sling Testing JCR Mock 1.6.2
+1 On Wed, Feb 22, 2023 at 6:34 AM Stefan Seifert wrote: > +1 > > stefan >
[GitHub] [sling-org-apache-sling-commons-messaging-mail] sonarcloud[bot] commented on pull request #2: SLING-11784: Email with both HTML and Text parts only display the text part in GMail
sonarcloud[bot] commented on PR #2: URL: https://github.com/apache/sling-org-apache-sling-commons-messaging-mail/pull/2#issuecomment-1440983428 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-commons-messaging-mail=2) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-messaging-mail=2=false=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-commons-messaging-mail=2=new_coverage=list) [100.0% Coverage](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-commons-messaging-mail=2=new_coverage=list) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-commons-messaging-mail=2=new_duplicated_lines_density=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-commons-messaging-mail=2=new_duplicated_lines_density=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Created] (SLING-11784) Email with both HTML and Text parts only display the text part in GMail
Sergiu Dumitriu created SLING-11784: --- Summary: Email with both HTML and Text parts only display the text part in GMail Key: SLING-11784 URL: https://issues.apache.org/jira/browse/SLING-11784 Project: Sling Issue Type: Bug Affects Versions: Commons Messaging Mail 2.0.0 Reporter: Sergiu Dumitriu When displaying a list of alternatives, rfc1341 considers that the preferred order is from the last to the first, so the richest alternative (HTML) should be placed after the basic text. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [sling-org-apache-sling-jcr-base] sonarcloud[bot] commented on pull request #9: [SLING-11741] Provide alternative terminology for inequitable terms
sonarcloud[bot] commented on PR #9: URL: https://github.com/apache/sling-org-apache-sling-jcr-base/pull/9#issuecomment-1440623658 SonarCloud Quality Gate failed. [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-jcr-base=9) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=BUG) [1 Bug](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-jcr-base=9=false=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-jcr-base=9=false=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-jcr-base=9=false=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=CODE_SMELL) [6 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-jcr-base=9=false=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-jcr-base=9=new_coverage=list) [71.1% Coverage](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-jcr-base=9=new_coverage=list) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-jcr-base=9=new_duplicated_lines_density=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-jcr-base=9=new_duplicated_lines_density=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-jcr-base] cristic83 opened a new pull request, #9: [SLING-11741] Provide alternative terminology for inequitable terms
cristic83 opened a new pull request, #9: URL: https://github.com/apache/sling-org-apache-sling-jcr-base/pull/9 This PR contains an alternative implementation using the ConfigurationListener capability provided by OSGI. The classes that have used the terms deemed inappropriate have been renamed and in order to preserve the existing configurations we implemented a couple of ConfigurationListener that build the new configs based on the old configs. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
RE: [VOTE] Release Apache Sling Engine 2.14.0
+1 stefan
RE: [VOTE] Release Apache Sling Testing JCR Mock 1.6.2
+1 stefan
[VOTE] Release Apache Sling Testing JCR Mock 1.6.2
Hi, We solved 1 issue in this release: https://issues.apache.org/jira/browse/SLING/fixforversion/12351708 Staging repository: https://repository.apache.org/content/repositories/orgapachesling-2720/ You can use this UNIX script to download the release and verify the signatures: https://gitbox.apache.org/repos/asf?p=sling-tooling-release.git;a=blob;f=check_staged_release.sh;hb=HEAD Usage: sh check_staged_release.sh 2720 /tmp/sling-staging Please vote to approve this release: [ ] +1 Approve the release [ ] 0 Don't care [ ] -1 Don't release, because ... This majority vote is open for at least 72 hours. Regards, Radu Cotescu
[jira] [Updated] (SLING-11779) Implement mixin support for JCR Mock
[ https://issues.apache.org/jira/browse/SLING-11779?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Radu Cotescu updated SLING-11779: - Fix Version/s: Testing JCR Mock 1.6.2 > Implement mixin support for JCR Mock > > > Key: SLING-11779 > URL: https://issues.apache.org/jira/browse/SLING-11779 > Project: Sling > Issue Type: Improvement > Components: Testing >Affects Versions: Testing JCR Mock 1.6.0 >Reporter: Joerg Hoh >Assignee: Stefan Seifert >Priority: Major > Fix For: Testing JCR Mock 1.6.2 > > > Add rudimentary support for mixins into the JCR Mock library. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [sling-whiteboard] dependabot[bot] opened a new pull request, #101: Bump commons-fileupload from 1.4 to 1.5 in /graalvm
dependabot[bot] opened a new pull request, #101: URL: https://github.com/apache/sling-whiteboard/pull/101 Bumps commons-fileupload from 1.4 to 1.5. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/sling-whiteboard/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Resolved] (SLING-11779) Implement mixin support for JCR Mock
[ https://issues.apache.org/jira/browse/SLING-11779?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Stefan Seifert resolved SLING-11779. Assignee: Stefan Seifert Resolution: Fixed https://github.com/apache/sling-org-apache-sling-testing-jcr-mock/commit/46173997edf6cee834467a8fd33101db98ee57f1 > Implement mixin support for JCR Mock > > > Key: SLING-11779 > URL: https://issues.apache.org/jira/browse/SLING-11779 > Project: Sling > Issue Type: Improvement > Components: Testing >Affects Versions: Testing JCR Mock 1.6.0 >Reporter: Joerg Hoh >Assignee: Stefan Seifert >Priority: Major > > Add rudimentary support for mixins into the JCR Mock library. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [sling-org-apache-sling-testing-jcr-mock] stefanseifert merged pull request #10: Add implementation for addMixin method
stefanseifert merged PR #10: URL: https://github.com/apache/sling-org-apache-sling-testing-jcr-mock/pull/10 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-testing-jcr-mock] sonarcloud[bot] commented on pull request #10: Add implementation for addMixin method
sonarcloud[bot] commented on PR #10: URL: https://github.com/apache/sling-org-apache-sling-testing-jcr-mock/pull/10#issuecomment-1439586033 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-testing-jcr-mock=10) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-jcr-mock=10=false=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-testing-jcr-mock=10=new_coverage=list) [91.3% Coverage](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-testing-jcr-mock=10=new_coverage=list) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-testing-jcr-mock=10=new_duplicated_lines_density=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-testing-jcr-mock=10=new_duplicated_lines_density=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (SLING-11768) Display Context "scriptString" encodes hyphen (-) as \u002D
[
https://issues.apache.org/jira/browse/SLING-11768?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17692004#comment-17692004
]
Radu Cotescu commented on SLING-11768:
--
[~kwin], this seems to be the commit that encoded the dash like we see it now:
https://github.com/apache/sling-org-apache-sling-xss/commit/bf2fb9bfb7aad00ece84456b3bd0a015d61788b9
I have to agree with the observations from the commit and the subsequent
comments from SLING-5946/SLING-8879. This issue is therefore not in the HTL
implementation, but in the XSS bundle.
> Display Context "scriptString" encodes hyphen (-) as \u002D
> ---
>
> Key: SLING-11768
> URL: https://issues.apache.org/jira/browse/SLING-11768
> Project: Sling
> Issue Type: Bug
> Components: HTL, XSS Protection API
>Reporter: Konrad Windszus
>Priority: Major
>
> According to
> https://github.com/adobe/htl-spec/blob/master/SPECIFICATION.md#121-display-context
> the context {{scriptString}} should only encode
> {quote}
> ... characters that would break out of the string.
> {quote}
> But {{AAA-BBB}} incorrectly becomes {{AAA\u002DBBB}} through this context
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
[jira] [Updated] (SLING-11768) Display Context "scriptString" encodes hyphen (-) as \u002D
[
https://issues.apache.org/jira/browse/SLING-11768?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Radu Cotescu updated SLING-11768:
-
Component/s: (was: XSS Protection API)
> Display Context "scriptString" encodes hyphen (-) as \u002D
> ---
>
> Key: SLING-11768
> URL: https://issues.apache.org/jira/browse/SLING-11768
> Project: Sling
> Issue Type: Bug
> Components: HTL
>Reporter: Konrad Windszus
>Priority: Major
>
> According to
> https://github.com/adobe/htl-spec/blob/master/SPECIFICATION.md#121-display-context
> the context {{scriptString}} should only encode
> {quote}
> ... characters that would break out of the string.
> {quote}
> But {{AAA-BBB}} incorrectly becomes {{AAA\u002DBBB}} through this context
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
