[GitHub] [sling-org-apache-sling-launchpad-integration-tests] sonarcloud[bot] commented on pull request #7: Bump org.apache.sling.servlets.post from 2.3.0 to 2.3.8

2023-03-04 Thread via GitHub
sonarcloud[bot] commented on PR #7: URL: https://github.com/apache/sling-org-apache-sling-launchpad-integration-tests/pull/7#issuecomment-1454851628 Kudos, SonarCloud Quality Gate passed! [![Quality Gate

[GitHub] [sling-org-apache-sling-launchpad-integration-tests] sonarcloud[bot] commented on pull request #8: Bump org.apache.sling.api from 2.3.0 to 2.25.4

2023-03-04 Thread via GitHub
sonarcloud[bot] commented on PR #8: URL: https://github.com/apache/sling-org-apache-sling-launchpad-integration-tests/pull/8#issuecomment-1454851621 Kudos, SonarCloud Quality Gate passed! [![Quality Gate

[GitHub] [sling-org-apache-sling-launchpad-integration-tests] sonarcloud[bot] commented on pull request #10: [SECURITY] Fix Temporary File Information Disclosure Vulnerability

2023-03-04 Thread via GitHub
sonarcloud[bot] commented on PR #10: URL: https://github.com/apache/sling-org-apache-sling-launchpad-integration-tests/pull/10#issuecomment-1454851604 Kudos, SonarCloud Quality Gate passed! [![Quality Gate

[GitHub] [sling-org-apache-sling-launchpad-integration-tests] sonarcloud[bot] commented on pull request #5: Bump httpclient from 4.3 to 4.5.13

2023-03-04 Thread via GitHub
sonarcloud[bot] commented on PR #5: URL: https://github.com/apache/sling-org-apache-sling-launchpad-integration-tests/pull/5#issuecomment-1454851488 Kudos, SonarCloud Quality Gate passed! [![Quality Gate

[GitHub] [sling-org-apache-sling-launchpad-integration-tests] sonarcloud[bot] commented on pull request #6: Bump plexus-utils from 3.0.9 to 3.0.16

2023-03-04 Thread via GitHub
sonarcloud[bot] commented on PR #6: URL: https://github.com/apache/sling-org-apache-sling-launchpad-integration-tests/pull/6#issuecomment-1454851477 Kudos, SonarCloud Quality Gate passed! [![Quality Gate

[GitHub] [sling-org-apache-sling-launchpad-integration-tests] sonarcloud[bot] commented on pull request #11: Bump org.apache.sling.jcr.base from 3.0.2 to 3.1.12

2023-03-04 Thread via GitHub
sonarcloud[bot] commented on PR #11: URL: https://github.com/apache/sling-org-apache-sling-launchpad-integration-tests/pull/11#issuecomment-1454851437 Kudos, SonarCloud Quality Gate passed! [![Quality Gate

[GitHub] [sling-org-apache-sling-resourcecollection] joerghoh commented on a diff in pull request #3: SLING-11794 - Adding a new method to get the properties as an adapted type

2023-03-04 Thread via GitHub
joerghoh commented on code in PR #3: URL: https://github.com/apache/sling-org-apache-sling-resourcecollection/pull/3#discussion_r1125500175 ## src/main/java/org/apache/sling/resource/collection/ResourceCollection.java: ## @@ -67,7 +68,16 @@ public interface ResourceCollection

[jira] [Commented] (SLING-11782) Document Sling threat model and how to properly secure Sling

2023-03-04 Thread Oliver Lietz (Jira)
[ https://issues.apache.org/jira/browse/SLING-11782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17696431#comment-17696431 ] Oliver Lietz commented on SLING-11782: -- The STRIDE model is quite common AFAIK. > Document Sling

[jira] [Commented] (SLING-11782) Document Sling threat model and how to properly secure Sling

2023-03-04 Thread Angela Schreiber (Jira)
[ https://issues.apache.org/jira/browse/SLING-11782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17696424#comment-17696424 ] Angela Schreiber commented on SLING-11782: -- [~rombert], count me in! as far as methodology is