Skip to content

Remove link to translation associated with supply chain attack #41973

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mdo merged 1 commit into from
Dec 27, 2025
Merged

Remove link to translation associated with supply chain attack #41973

mdo merged 1 commit into from
Dec 27, 2025
+0 −5

Conversation

@bardiharborow
Copy link
Member

@bardiharborow bardiharborow commented Dec 25, 2025
edited
Loading

This PR removes a link from our documentation to a community-provided Mandarin Chinese (Simplified) translation of our documentation. The translation is hosted on a sub-domain of the bootcss.com domain previously involved in the polyfill.io supply chain attack.

News article: https://www.bleepingcomputer.com/news/security/polyfillio-bootcdn-bootcss-staticfile-attack-traced-to-1-operator/

See also: uBlockOrigin/uAssets#24255

Preview: https://deploy-preview-41973--twbs-bootstrap.netlify.app/docs/5.3/about/translations/

@bardiharborow
Remove link to translation associated with supply chain attack
44fb0a5 
This commit removes a link from our documentation to a Mandarin Chinese (Simplified) translation of our documentation which is hosted on a sub-domain of the `bootcss.com` domain previously involved in the `polyfill.io` supply chain attack.
@bardiharborow bardiharborow requested review from a team December 25, 2025 16:01
@XhmikosR
Copy link
Member

XhmikosR commented Dec 25, 2025

@bardiharborow should we also remove it from all gh-pages files?

@mdo mdo merged commit c82919e into main Dec 27, 2025
14 checks passed
@mdo mdo deleted the docs/translations/remove-bootcss branch December 27, 2025 19:19
@mdo mdo added this to v5.4.0 Dec 27, 2025
@github-project-automation github-project-automation bot moved this to Needs review in v5.4.0 Dec 27, 2025
@github-project-automation github-project-automation bot moved this from Needs review to Done in v5.4.0 Dec 27, 2025
@bardiharborow
Copy link
Member Author

bardiharborow commented Dec 28, 2025

@XhmikosR possibly, I'll look at putting another PR up.

I'll lock this thread though because of whatever spam is happening here.

@twbs twbs locked as spam and limited conversation to collaborators Dec 28, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

docs v5

Projects

v5.4.0
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@bardiharborow @XhmikosR @mdo