On Sat, 22 Aug 2020 at 23:45, Gary Gregory <[email protected]> wrote: > > On Sat, Aug 22, 2020 at 4:50 PM sebb <[email protected]> wrote: > > > On Sat, 22 Aug 2020 at 17:13, Gilles Sadowski <[email protected]> > > wrote: > > > > > > 2020-08-22 16:02 UTC+02:00, Gary Gregory <[email protected]>: > > > > Here is a first cut: > > > > > > > > https://github.com/apache/commons-io/security/policy > > > > Why does IO have links to Known Vulnerabilities for Compress, > > Collections etc, but not IO? > > > > That's just a reflection of what is here: > http://commons.apache.org/security.html
The above is fine, because it is clearly a page that relates to all of Commons. However when the page is specific to a single component, it is misleading to show links for other components. > Gary > > > > > > > And here is my suggestion: > > > https://github.com/apache/commons-rng/security/policy > > > > I'm inclined to agree with Gilles here; a simple link is sufficient. > > > > No need to update multiple files when the text has to be updated. > > > > > YMMV, > > > Gilles > > > > > > > [...] > > > > > > --------------------------------------------------------------------- > > > To unsubscribe, e-mail: [email protected] > > > For additional commands, e-mail: [email protected] > > > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [email protected] > > For additional commands, e-mail: [email protected] > > > > --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
