www.eclipse.org-eclipse-news's People
Contributors
Stargazers
Watchers
Forkers
iloveeclipse jjohnstn sarikasinha ktatavarthi niraj-modi jarthana sravanlakkimsetti bananeweizen laeubi hmackamul jonahgraham trancexpress mickaelistria carstenartur opcoach vik-chand lshanmug vogella ingomohr gzsombor jukzi pbodnar eneufeld alshamams n1k145 merks beckerwdf step-security-bot gireeshpunathilwww.eclipse.org-eclipse-news's Issues
Security Best Practices
Hi,
As a member of the Security Team from the Eclipse Foundation, we used a tools Scorecard and StepSecurity to analyze this repo in order to push a pull request that cover some or all the following best practices below:
- Apply least privilege principle to GITHUB_TOKEN
- Add or fine tune the use of Dependabot
- Pin actions to a full length commit SHA
As a result, You will see a PR coming from StepSecurity to help to implement those fixes above which will cover a list of points below identified detected:
- Apply least privilege principle to GITHUB_TOKEN for files.github/workflows/updateRelease.yml
- Add or fine tune the use of Dependabot
- Pin Actions to a full length commit SHA for files .github/workflows/updateRelease.yml
Please don’t hesitate and reach out if there is something unclear above.
Kind Regards,
Francisco Perez
404 for New & Noteworthy pages
Create N&N structure for 4.25
@lak-proddev or @sravanlakkimsetti IIRC you have a script to create the content for the next N&N release? If that is true can you run it and publish the result?
Move N&N to wiki
Do we need a repo for N&N? IMHO a wiki would be easier to use and update and also easier accessable for the end user.
My suggestion would be to stop using the HTML document and start using the wiki for N&N.
WDYT @laeubi and @mickaelistria
Enable actions for this repository?
I think one might want to automate the applyTemplate script on milestone creation, but I don'T see any actions enbaled, can someone enable these or who needs to give +1 for that ?
Paragraphs start at wrong vertical offset
Every time someone starts a news entry with a P tag, the text is not aligned with the headline left of it:
I've fixed this many times by removing the first paragraph (and instead just leaving the bare content of the previous P tag). However, we should probably rather fix this via CSS instead.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.