I think it would be really useful to get this up n running in an automated fashion ..
I ran findbugs (through the eclipse plug-in) and it found a few things w/ each of the modules. For example, the following HTTP splitting vulnerability was found on line 64 of ConcatProxyServlet in the gadgets module: - "This code directly writes an HTTP parameter to an HTTP header, which allows for a HTTP response splitting vulnerability. See http://en.wikipedia.org/wiki/HTTP_response_splitting for more information." I'm not an expert on HTTP vulnerabilities, but I like the fact that findbugs highlighted this .. I think it would be useful to have the shindig site deployed as part of the automated build process, so that the community has visibility to these 'potential' issues. And other great features like code coverage and the TODO tag list also warrants having this :) Cheers Chico 2009/2/19 Ian Boston <[email protected]> > I have been deploying it at > http://people.apache.org/~ieb/shindig<http://people.apache.org/%7Eieb/shindig> > > but I have done this manually since I couldn't get cron to work on people > (probably because I should not be using it :)) > > It would be nice to have a hudson job to do it, but I am not certain how it > would deploy from there. > Ian > > > > On 19 Feb 2009, at 16:21, chico charlesworth wrote: > > Hi all, >> >> Is 'mvn site' being run for shindig? If so, does anyone know where the >> site >> is being deployed to? >> >> Cheers >> Chico >> > >
