Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Change http:// to https:// in our ASL2 copyright header? #14099

Open
mikemccand opened this issue Jan 3, 2025 · 0 comments
Open

Change http:// to https:// in our ASL2 copyright header? #14099

mikemccand opened this issue Jan 3, 2025 · 0 comments
Labels
type:enhancement

Comments

@mikemccand
Copy link
Member

Description

Randomly, while grep'ing for http in our sources to locate links to external papers that inspired important changes in Lucene, I noticed that our standard Apache Software License version 2.0 copyright header still uses the non-SSL (http://) link.

Should we update that to https://? Would that show that Lucene devs take security seriously or so ("lead by example")? If you load the non-SSL url it redirects anyways to the SSL version.

Apache's official guidelines on the copyright header text specifically state that https is acceptable, though the copy/paste text sample given there is non-SSL.

Curiously, a couple source files in Lucene do use the https:// URL in the copyright header! gradlew.bat and gradlew, cool.

Using GitHub's search, I count ~43.8K source files under the Apache org that use the SSL URL, and ~1.3M source files that do not! We could be early adopters and join the ~3.2% of Apache source code that does use the SSL link!
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
type:enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mikemccand