Author: covener
Date: Thu Apr 4 17:28:36 2024
New Revision: 1916802
URL: http://svn.apache.org/viewvc?rev=1916802&view=rev
Log:
emphasize vulnerability page
Modified:
httpd/dev-tools/release/README
Modified: httpd/dev-tools/release/README
URL: http://svn.apache.org/viewvc/httpd/dev-tools/release/README?rev=1916802&r1=1916801&r2=1916802&view=diff
==============================================================================
--- httpd/dev-tools/release/README (original)
+++ httpd/dev-tools/release/README Thu Apr 4 17:28:36 2024
@@ -51,7 +51,12 @@ Usage overview:
and tweak as needed. git@github.com:/apache/httpd-site has one-time copies of CVE.json, edit and
commit and the site will be rebuilt immediately.
+ Even if you are not picky about the style of https://httpd.apache.org/security/vulnerabilities_24.html it is
+ critical to verify the expected CVEs are listed. This is built by CI during changes to git@github.com:/apache/httpd-site
+ and can be broken if the exported CVE json is missing fields.
+
If CHANGES is really bad, consider replacing the various CHANGES files on dist/httpd.
+
# If you are a moderator for announce@httpd.a.o or announce@a.o moderate your own announcement
at https://webmod.apache.org/?action=frontpage
# Edit the CVE info into the revisions that fixed them in the backport, e.g. `svn propedit --revprop -r... svn:log`
Date: Thu Apr 4 17:28:36 2024
New Revision: 1916802
URL: http://svn.apache.org/viewvc?rev=1916802&view=rev
Log:
emphasize vulnerability page
Modified:
httpd/dev-tools/release/README
Modified: httpd/dev-tools/release/README
URL: http://svn.apache.org/viewvc/httpd/dev-tools/release/README?rev=1916802&r1=1916801&r2=1916802&view=diff
==============================================================================
--- httpd/dev-tools/release/README (original)
+++ httpd/dev-tools/release/README Thu Apr 4 17:28:36 2024
@@ -51,7 +51,12 @@ Usage overview:
and tweak as needed. git@github.com:/apache/httpd-site has one-time copies of CVE.json, edit and
commit and the site will be rebuilt immediately.
+ Even if you are not picky about the style of https://httpd.apache.org/security/vulnerabilities_24.html it is
+ critical to verify the expected CVEs are listed. This is built by CI during changes to git@github.com:/apache/httpd-site
+ and can be broken if the exported CVE json is missing fields.
+
If CHANGES is really bad, consider replacing the various CHANGES files on dist/httpd.
+
# If you are a moderator for announce@httpd.a.o or announce@a.o moderate your own announcement
at https://webmod.apache.org/?action=frontpage
# Edit the CVE info into the revisions that fixed them in the backport, e.g. `svn propedit --revprop -r... svn:log`