From 5b36399d98d68a73116e18d6eb0c2fa14af46001 Mon Sep 17 00:00:00 2001
From: Keshav Priyadarshi <git@keshav.space>
Date: Fri, 30 Jan 2026 18:57:23 +0530
Subject: [PATCH 1/2] Update URLs in website footer

Signed-off-by: Keshav Priyadarshi <git@keshav.space>
---
 vulnerabilities/templates/footer.html | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/vulnerabilities/templates/footer.html b/vulnerabilities/templates/footer.html
index d525167e2..a20c9556e 100644
--- a/vulnerabilities/templates/footer.html
+++ b/vulnerabilities/templates/footer.html
@@ -1,9 +1,9 @@
 <footer class="footer">
     <div class="content has-text-centered">
         <p>
-            <strong>VulnerableCode</strong> is free software by <a href="https://github.com/nexB/vulnerablecode"> nexB Inc. and others</a> |
-            Source code license: <a href="https://github.com/nexB/vulnerablecode/blob/main/apache-2.0.LICENSE">Apache-2.0</a> |
-            Data license: <a href="https://github.com/nexB/vulnerablecode/blob/main/cc-by-sa-4.0.LICENSE">CC-BY-SA-4.0</a> | <a href="/tos">Terms of Service</a>
+            <strong>VulnerableCode</strong> is free software by <a href="https://github.com/aboutcode-org/vulnerablecode"> nexB Inc. and others</a> |
+            Source code license: <a href="https://github.com/aboutcode-org/vulnerablecode/blob/main/apache-2.0.LICENSE">Apache-2.0</a> |
+            Data license: <a href="https://github.com/aboutcode-org/vulnerablecode/blob/main/cc-by-sa-4.0.LICENSE">CC-BY-SA-4.0</a> | <a href="/tos">Terms of Service</a>
         </p>
     </div>
 </footer>

From 02623a67ed6c1b6b6718ee9d4f26e2ed53638e30 Mon Sep 17 00:00:00 2001
From: Keshav Priyadarshi <git@keshav.space>
Date: Fri, 30 Jan 2026 19:04:01 +0530
Subject: [PATCH 2/2] Show unstable features warning on staging instance

Signed-off-by: Keshav Priyadarshi <git@keshav.space>
---
 docs/source/installation.rst          |  4 ++++
 vulnerabilities/templates/navbar.html | 27 ++++++++++++++++++++-------
 vulnerablecode/context_processors.py  |  6 ++++++
 vulnerablecode/settings.py            |  4 ++++
 4 files changed, 34 insertions(+), 7 deletions(-)

diff --git a/docs/source/installation.rst b/docs/source/installation.rst
index 655504d3d..4135cecf7 100644
--- a/docs/source/installation.rst
+++ b/docs/source/installation.rst
@@ -84,6 +84,10 @@ to run on a different port than 8000.
    are several steps that may be needed to secure such a deployment.
    Currently, this is not recommendend.
 
+.. tip::
+
+    Set ``STAGING`` to ``False`` in production to disable the staging environment warning.
+
 Execute a Command
 ^^^^^^^^^^^^^^^^^
 
diff --git a/vulnerabilities/templates/navbar.html b/vulnerabilities/templates/navbar.html
index b7a7fba0a..de6dc1a94 100644
--- a/vulnerabilities/templates/navbar.html
+++ b/vulnerabilities/templates/navbar.html
@@ -1,6 +1,18 @@
 {% load utils %}
 
-<nav class="navbar is-dark mb-5 border-bottom-radius" role="navigation" aria-label="main navigation">
+
+{% if STAGING %}
+<div class="notification is-danger has-text-centered is-fixed-top my-0" style="border-radius: 0;">
+    <span class="icon">
+        <i class="fa fa-exclamation-triangle"></i>
+    </span>
+    <strong> Staging Environment:</strong>
+    Content and features may be unstable or change without notice.
+</div>
+{% endif %}
+
+<nav class="navbar is-dark mb-5 border-bottom-radius" role="navigation" aria-label="main navigation"
+    style="border-radius: 0;">
     <div class="navbar-brand ml-3">
         <a class="navbar-item is-size-4 has-text-weight-bold {% active_item 'home' %}" href="{% url 'home' %}">
             VulnerableCode<span class="nexb-orange">.</span>io
@@ -29,7 +41,7 @@
         <div class="navbar-item navbar-item is-cursor-help">
             <div class="dropdown is-right is-hoverable ">
                 <div class="dropdown-trigger has-text-grey-light">About</div>
-                    <div class="dropdown-menu navbar-hover-div" role="menu">
+                <div class="dropdown-menu navbar-hover-div" role="menu">
                     <div class="dropdown-content">
                         <div class="dropdown-item about-hover-div">
 
@@ -37,18 +49,19 @@
                             <ul>
                                 <li>
                                     Live chat at <a href="https://gitter.im/aboutcode-org/vulnerablecode">
-                                    https://gitter.im/aboutcode-org/vulnerablecode</a>
+                                        https://gitter.im/aboutcode-org/vulnerablecode</a>
                                 </li>
                                 <li>
-                                    Source code and support at <a href="https://github.com/nexB/vulnerablecode">https://github.com/nexB/vulnerablecode</a>
+                                    Source code and support at <a
+                                        href="https://github.com/nexB/vulnerablecode">https://github.com/nexB/vulnerablecode</a>
                                 </li>
                                 <li>
-                                    Docs at <a href=https://vulnerablecode.readthedocs.org/>
+                                    Docs at <a href=https://vulnerablecode.readthedocs.org />
                                     https://vulnerablecode.readthedocs.org/</a>
                                 </li>
                                 <li>
                                     Sponsored by NLnet <a href="https://nlnet.nl/project/vulnerabilitydatabase/">
-                                    https://nlnet.nl/project/vulnerabilitydatabase/</a> for
+                                        https://nlnet.nl/project/vulnerabilitydatabase/</a> for
                                     <a href="https://www.aboutcode.org/">https://www.aboutcode.org/</a>
                                 </li>
                             </ul>
@@ -59,7 +72,7 @@
         </div>
         <div class="navbar-item navbar-item is-cursor-help">
             <div class="dropdown-trigger has-text-grey-light">
-            v{{ VULNERABLECODE_VERSION }}
+                v{{ VULNERABLECODE_VERSION }}
             </div>
         </div>
     </div>
diff --git a/vulnerablecode/context_processors.py b/vulnerablecode/context_processors.py
index ee5885b81..d6c24c793 100644
--- a/vulnerablecode/context_processors.py
+++ b/vulnerablecode/context_processors.py
@@ -7,6 +7,8 @@
 # See https://aboutcode.org for more information about nexB OSS projects.
 #
 
+from django.conf import settings
+
 from vulnerablecode import __version__ as vulnerablecode_version
 
 
@@ -14,3 +16,7 @@ def versions(request):
     return {
         "VULNERABLECODE_VERSION": vulnerablecode_version,
     }
+
+
+def staging(request):
+    return {"STAGING": getattr(settings, "STAGING")}
diff --git a/vulnerablecode/settings.py b/vulnerablecode/settings.py
index 05a3d0fa8..7318e20fb 100644
--- a/vulnerablecode/settings.py
+++ b/vulnerablecode/settings.py
@@ -51,6 +51,9 @@
 # SECURITY WARNING: do not  run with debug turned on in production
 DEBUG_UI = env.bool("VULNERABLECODE_DEBUG_UI", default=False)
 
+# WARNING: Set this to False in production
+STAGING = env.bool("STAGING", default=True)
+
 EMAIL_BACKEND = "django.core.mail.backends.smtp.EmailBackend"
 EMAIL_HOST = env.str("EMAIL_HOST", default="")
 EMAIL_USE_TLS = True
@@ -139,6 +142,7 @@
                 "django.template.context_processors.request",
                 "django.template.context_processors.static",
                 "vulnerablecode.context_processors.versions",
+                "vulnerablecode.context_processors.staging",
             ],
         },
     },