(ofbiz-site) branch master updated: Improved: small changes in security page

Tue, 02 Sep 2025 01:58:33 -0700 

This is an automated email from the ASF dual-hosted git repository.

jleroux pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/ofbiz-site.git


The following commit(s) were added to refs/heads/master by this push:
     new d3dd7cb  Improved: small changes in security page
d3dd7cb is described below

commit d3dd7cb7ba15716c91cf9237ffef8249683712d0
Author: Jacques Le Roux <[email protected]>
AuthorDate: Tue Sep 2 10:58:18 2025 +0200

    Improved: small changes in security page
---
 security.html                  | 2 +-
 template/page/security.tpl.php | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/security.html b/security.html
index 0f73fae..62d8fa6 100644
--- a/security.html
+++ b/security.html
@@ -122,7 +122,7 @@
              before disclosing them in a public forum. Please don't pack 
several vulnerabilities in the same report, send them one by one, thanks in 
advance.</strong></p>
 
             <p>Note that we don't create CVEs for post-authN attacks.
-            <strong> <a href="https://s.apache.org/dsj2p";> Rather create bugs 
reports in our issue tracker (Jira) for that.</a><span style="color:red"> 
Please don't create zero day Jira issues for unauth (aka pre-authN) reports, 
thanks in advance.</span></strong></p>
+            <strong> <a href="https://s.apache.org/dsj2p";> Rather create bugs 
reports in our issue tracker (Jira) for that.</a>Please don't create zero day 
Jira issues for unauth (aka pre-authN) reports, thanks in advance.</strong></p>
 
             <p>One of the reason we don't create CVEs for post-authN attacks 
is because
             <a 
href="https://nightlies.apache.org/ofbiz/trunk/readme/html5/README.html#security";
 target="external"> we highly suggest to OFBiz users to not use credentials 
demo in production</a>
diff --git a/template/page/security.tpl.php b/template/page/security.tpl.php
index b069f8d..8adb32f 100644
--- a/template/page/security.tpl.php
+++ b/template/page/security.tpl.php
@@ -23,7 +23,7 @@
              before disclosing them in a public forum. Please don't pack 
several vulnerabilities in the same report, send them one by one, thanks in 
advance.</strong></p>
 
             <p>Note that we don't create CVEs for post-authN attacks.
-            <strong> <a href="https://s.apache.org/dsj2p";> Rather create bugs 
reports in our issue tracker (Jira) for that.</a><span style="color:red"> 
Please don't create zero day Jira issues for unauth (aka pre-authN) reports, 
thanks in advance.</span></strong></p>
+            <strong> <a href="https://s.apache.org/dsj2p";> Rather create bugs 
reports in our issue tracker (Jira) for that.</a>Please don't create zero day 
Jira issues for unauth (aka pre-authN) reports, thanks in advance.</strong></p>
 
             <p>One of the reason we don't create CVEs for post-authN attacks 
is because
             <a 
href="https://nightlies.apache.org/ofbiz/trunk/readme/html5/README.html#security";
 target="external"> we highly suggest to OFBiz users to not use credentials 
demo in production</a>

Reply via email to