This is an automated email from the ASF dual-hosted git repository.
HoustonPutman pushed a change to branch production
in repository https://gitbox.apache.org/repos/asf/solr-site.git
from 8bd722b2f Merge remote-tracking branch 'apache/main' into production
add 10132d986 SOLR-18288: VEX statements for the April 2026 Apache Log4j
CVEs
add f77e1eb55 fix: extend statements to Solr `10.0.0`
add a82ecbcd3 SOLR-18288: Fix MapMessage family description in
CVE-2026-34481 VEX
add 0e33e735a SOLR-18288: Link April 2026 Log4j VEX statements to JIRA
issue
add 6c25d0516 Merge pull request #195 from
vex-generation-toolset/vex/log4j-april-2026
add 43097c002 With AI support, update the open ended versions to being
close ended.
add b1e105daa align this rather generic issue to follow our vex pattern
more closely
add 83d7bfa1a this is too undefined, and really isnt a vex file
add cb5409a43 refine why this jar trips up scanners
add 19ffc4e6b refine the versions of Solr that vex entries apply to
add aa45b0686 Potential fix for pull request finding
add 0a709bbfe we dont need the jira issue
add 9c8e96141 Merge pull request #193 from epugh/update_vex_status
add 477d81ba1 add OpenNLP CVE Vex files
add 8d3cf0f0e provide more accurate state of play message, that will be
updated again when integrated into solr
add 9b7cd51ce Potential fix for pull request finding
add 30ae5da39 Merge branch 'add_opennlp_cve_as_vex' of
github.com:epugh/solr-site into add_opennlp_cve_as_vex
add 705f8ddaa Merge pull request #192 from epugh/add_opennlp_cve_as_vex
add 830f8c47f List all VEX entries in the CVE table with a status tag
add 6b82b6ee7 we don't need the extra details...
add f302bc6d9 make sure to only show Vex entries for dependencies, not
Solr itself, they go in the main security page
add 2017b3877 Merge pull request #191 from epugh/vex-table-list-all
add 1843a369e Bump tornado from 6.5.5 to 6.5.7
add 282e8ad44 Merge pull request #194 from
apache/dependabot/pip/tornado-6.5.7
add ad34bfb0a [SOLR-17822] Document non-exploitability of CVE-2025-48924
add b5cc4981e Merge remote-tracking branch 'upstream/main' into pr/152
add aa91d0f87 Document commons lang vulnerablity
add 634dd7e04 Merge pull request #152 from
ppkarwasz/fix/CVE-2025-48924_commons-lang
add 84841e7b1 bumped the version we are using
add 289d27008 Merge pull request #196 from
epugh/bump_cyclonedx_version_statement
add 127ea7258 Add docs button to menus and fix operator docs links (#190)
new 369cc9cd5 Merge remote-tracking branch 'apache/main' into production
The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
.../pages/operator/articles/explore-v030-gke.md | 24 ++--
content/pages/operator/resources.md | 22 ++-
content/pages/security-dependency-cves.md | 2 +-
.../operator/news/2021-04-29-v0-3-0-available.md | 2 +-
.../operator/news/2021-09-13-v0-4-0-available.md | 2 +-
.../operator/news/2021-11-16-v0-5-0-available.md | 2 +-
.../operator/news/2022-03-21-v0-5-1-available.md | 2 +-
.../operator/news/2023-04-24-v0-7-0-available.md | 2 +-
.../operator/news/2023-07-21-v0-7-1-available.md | 2 +-
.../operator/news/2023-10-20-v0-8-0-available.md | 2 +-
.../operator/news/2024-04-12-v0-8-1-available.md | 2 +-
.../operator/news/2025-01-22-v0-9-0-available.md | 2 +-
.../operator/news/2025-03-25-v0-9-1-available.md | 2 +-
content/solr/vex/2022-12-14-cve-2012-0881.md | 2 +-
content/solr/vex/2022-12-14-cve-2012-2098.md | 2 +-
content/solr/vex/2022-12-14-cve-2015-5237.md | 2 +-
content/solr/vex/2022-12-14-cve-2016-1181.md | 18 +++
content/solr/vex/2022-12-14-cve-2016-6809.md | 4 +-
content/solr/vex/2022-12-14-cve-2017-14868.md | 2 +-
content/solr/vex/2022-12-14-cve-2017-15095.md | 2 +-
content/solr/vex/2022-12-14-cve-2018-1000632.md | 2 +-
.../solr/vex/2022-12-14-cve-2018-10237-guava.md | 2 +-
content/solr/vex/2022-12-14-cve-2018-10237.md | 2 +-
content/solr/vex/2022-12-14-cve-2018-8088.md | 2 +-
content/solr/vex/2022-12-14-cve-2020-13955.md | 2 +-
content/solr/vex/2022-12-14-cve-2020-27223.md | 2 +-
content/solr/vex/2022-12-14-cve-2021-33813.md | 2 +-
content/solr/vex/2022-12-14-cve-2022-25168.md | 2 +-
content/solr/vex/2022-12-14-cve-2022-33980.md | 2 +-
content/solr/vex/2022-12-14-cve-2022-42889.md | 2 +-
content/solr/vex/2022-12-14-cve-tika-core.md | 11 --
content/solr/vex/2022-12-14-cve-velocity-tools.md | 11 --
content/solr/vex/2024-01-12-cve-2023-51074.md | 4 +-
content/solr/vex/2025-01-26-cve-2025-24814.md | 2 +-
content/solr/vex/2025-02-26-cve-2024-6763.md | 2 +-
content/solr/vex/2025-07-25-cve-2024-51504.md | 2 +-
content/solr/vex/2025-08-04-cve-2025-48924.md | 11 ++
content/solr/vex/2026-04-10-cve-2026-34477.md | 44 ++++++
content/solr/vex/2026-04-10-cve-2026-34478.md | 45 ++++++
content/solr/vex/2026-04-10-cve-2026-34479.md | 42 ++++++
content/solr/vex/2026-04-10-cve-2026-34480.md | 41 ++++++
content/solr/vex/2026-04-10-cve-2026-34481.md | 27 ++++
content/solr/vex/2026-05-04-cve-2026-40682.md | 56 ++++++++
content/solr/vex/2026-05-04-cve-2026-42027.md | 65 +++++++++
content/solr/vex/2026-05-04-cve-2026-42440.md | 48 +++++++
plugins/vex/vex.py | 3 +-
requirements.txt | 22 +--
themes/solr/static/css/base.css | 151 ++++++++++++++++++---
themes/solr/static/css/operator.css | 62 +++++++--
themes/solr/static/javascript/main.js | 53 +++-----
themes/solr/templates/_footer.html | 2 +-
themes/solr/templates/_header.html | 27 ++--
themes/solr/templates/operator/_footer.html | 2 +-
themes/solr/templates/operator/_header.html | 3 +
themes/solr/templates/operator/features.html | 18 +--
.../solr/templates/security-dependency-cves.html | 8 +-
56 files changed, 696 insertions(+), 186 deletions(-)
create mode 100644 content/solr/vex/2022-12-14-cve-2016-1181.md
delete mode 100644 content/solr/vex/2022-12-14-cve-tika-core.md
delete mode 100644 content/solr/vex/2022-12-14-cve-velocity-tools.md
create mode 100644 content/solr/vex/2025-08-04-cve-2025-48924.md
create mode 100644 content/solr/vex/2026-04-10-cve-2026-34477.md
create mode 100644 content/solr/vex/2026-04-10-cve-2026-34478.md
create mode 100644 content/solr/vex/2026-04-10-cve-2026-34479.md
create mode 100644 content/solr/vex/2026-04-10-cve-2026-34480.md
create mode 100644 content/solr/vex/2026-04-10-cve-2026-34481.md
create mode 100644 content/solr/vex/2026-05-04-cve-2026-40682.md
create mode 100644 content/solr/vex/2026-05-04-cve-2026-42027.md
create mode 100644 content/solr/vex/2026-05-04-cve-2026-42440.md