Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security #590

Open
wants to merge 3 commits into
base: asf-site
Choose a base branch
from
Open

Security #590

wants to merge 3 commits into from

Conversation

raboof
Copy link
Member

@raboof raboof commented Feb 21, 2025

The spark security page already links to the Apache-wide security information. This change removes the link from the menu to the Apache-wide security page, making it more likely people will discover the Spark-specific one first.

Also adds a link from the Spark-specific security page to the security page in the docs.

See also https://cwiki.apache.org/confluence/display/SECURITY/Documenting+your+security+model

@raboof
Make Spark-specific security page more prominent
b906076 
The spark security page already links to the Apache-wide security
information. This change removes the link from the menu to the
Apache-wide security page, making it more likely people will
discover the Spark-specific one first.

Also link from the Spark-specific security page to the security
page in the docs.

See also https://cwiki.apache.org/confluence/display/SECURITY/Documenting+your+security+model
@raboof
bundle exec jekyll build
9f93300
srowen
srowen requested changes Feb 21, 2025
View reviewed changes
Copy link
Member

@srowen srowen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh actually it looks like the generated HTML has some differences and the CI/CD checks fail. Can you check if your jekyll version, etc is the same? see the notes on https://github.com/apache/spark-website

@raboof
more jekyll changes
8f4962f 
(though these kinda seem unrelated to the changes to the source?)
@raboof
Copy link
Member Author

raboof commented Feb 24, 2025
edited
Loading

Oh actually it looks like the generated HTML has some differences and the CI/CD checks fail. Can you check if your jekyll version, etc is the same? see the notes on https://github.com/apache/spark-website

ah I ignored some changes that seemed unrelated... now committed those as well

yaooqinn
yaooqinn reviewed Mar 13, 2025
View reviewed changes
_layouts/global.html
@@ -147,7 +147,6 @@
<li><a class="dropdown-item"
href="https://www.apache.org/foundation/sponsorship.html">Sponsorship</a></li>
<li><a class="dropdown-item" href="https://www.apache.org/foundation/thanks.html">Thanks</a></li>
<li><a class="dropdown-item" href="https://www.apache.org/security/">Security</a></li>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Instead of removing this, please update it with the project-specific one and match the regex ^https?://.*apache.org/.*[Ss]ecurity to satisfy ASF requirements

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think the point is that there is already a "Security" link in the Developer menu that points to the Spark Security page.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I mean we can replace this with our security side to reach the goal of this PR and satisfy the ASF website check service

yaooqinn
yaooqinn reviewed Mar 13, 2025
View reviewed changes
_layouts/home.html
@@ -152,7 +152,6 @@
<li><a class="dropdown-item"
href="https://www.apache.org/foundation/sponsorship.html">Sponsorship</a></li>
<li><a class="dropdown-item" href="https://www.apache.org/foundation/thanks.html">Thanks</a></li>
<li><a class="dropdown-item" href="https://www.apache.org/security/">Security</a></li>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ditto

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@srowen srowen srowen requested changes

@yaooqinn yaooqinn yaooqinn left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@raboof @srowen @yaooqinn