docs: replace deprecated PingCAP domains by wuhuizuo · Pull Request #361 · tikv/website

wuhuizuo · 2026-04-02T10:36:37Z

Summary

replace deprecated download.pingcap.org references with download.pingcap.com
replace deprecated charts.pingcap.org references with charts.pingcap.com
keep existing paths and protocols unchanged

Validation

git diff --check
verified no remaining download.pingcap.org / charts.pingcap.org references in the patched branch

Summary by CodeRabbit

Documentation
- Updated download URLs across installation, deployment, testing, verification, and monitoring guides to use the new download.pingcap.com domain for TiDB, TiKV, Prometheus, node_exporter, Grafana, and Java client artifacts.
- Updated Helm chart repository URLs for TiKV Operator setup to use https://charts.pingcap.com/ across documentation versions.

ti-chi-bot · 2026-04-02T10:36:48Z

Welcome @wuhuizuo! It looks like this is your first PR to tikv/website 🎉

coderabbitai · 2026-04-02T10:36:52Z

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 8680a59f-ddc7-4e2b-b1b7-cc677b5076b4

📥 Commits

Reviewing files that changed from the base of the PR and between 7856116 and 37887ac.

📒 Files selected for processing (29)

content/docs/3.0/tasks/deploy/binary.md
content/docs/3.0/tasks/try/tikv-operator.md
content/docs/4.0/tasks/deploy/binary.md
content/docs/4.0/tasks/try/tikv-operator.md
content/docs/5.1/deploy/install/test.md
content/docs/5.1/deploy/install/verify.md
content/docs/5.1/deploy/monitor/deploy.md
content/docs/5.1/reference/CLI/pd-ctl.md
content/docs/5.1/reference/CLI/pd-recover.md
content/docs/6.1/deploy/install/test.md
content/docs/6.1/deploy/install/verify.md
content/docs/6.1/deploy/monitor/deploy.md
content/docs/6.1/reference/CLI/pd-ctl.md
content/docs/6.1/reference/CLI/pd-recover.md
content/docs/6.5/deploy/install/test.md
content/docs/6.5/deploy/install/verify.md
content/docs/6.5/deploy/monitor/deploy.md
content/docs/6.5/reference/CLI/pd-ctl.md
content/docs/6.5/reference/CLI/pd-recover.md
content/docs/7.1/deploy/install/test.md
content/docs/7.1/deploy/install/verify.md
content/docs/7.1/deploy/monitor/deploy.md
content/docs/7.1/reference/CLI/pd-ctl.md
content/docs/7.1/reference/CLI/pd-recover.md
content/docs/dev/deploy/install/test.md
content/docs/dev/deploy/install/verify.md
content/docs/dev/deploy/monitor/deploy.md
content/docs/dev/reference/CLI/pd-ctl.md
content/docs/dev/reference/CLI/pd-recover.md

✅ Files skipped from review due to trivial changes (27)

content/docs/dev/deploy/install/verify.md
content/docs/dev/deploy/monitor/deploy.md
content/docs/7.1/deploy/install/verify.md
content/docs/4.0/tasks/try/tikv-operator.md
content/docs/5.1/deploy/monitor/deploy.md
content/docs/5.1/deploy/install/verify.md
content/docs/6.5/deploy/install/verify.md
content/docs/7.1/deploy/install/test.md
content/docs/6.1/deploy/install/test.md
content/docs/6.1/deploy/install/verify.md
content/docs/dev/reference/CLI/pd-ctl.md
content/docs/dev/reference/CLI/pd-recover.md
content/docs/5.1/reference/CLI/pd-recover.md
content/docs/6.5/reference/CLI/pd-ctl.md
content/docs/dev/deploy/install/test.md
content/docs/5.1/deploy/install/test.md
content/docs/5.1/reference/CLI/pd-ctl.md
content/docs/7.1/deploy/monitor/deploy.md
content/docs/6.5/reference/CLI/pd-recover.md
content/docs/4.0/tasks/deploy/binary.md
content/docs/7.1/reference/CLI/pd-ctl.md
content/docs/6.5/deploy/monitor/deploy.md
content/docs/6.1/reference/CLI/pd-ctl.md
content/docs/6.1/deploy/monitor/deploy.md
content/docs/3.0/tasks/deploy/binary.md
content/docs/7.1/reference/CLI/pd-recover.md
content/docs/6.1/reference/CLI/pd-recover.md

🚧 Files skipped from review as they are similar to previous changes (1)

content/docs/6.5/deploy/install/test.md

📝 Walkthrough

Walkthrough

Updated documentation download and Helm chart URLs across multiple docs: replaced download.pingcap.org → download.pingcap.com for binaries/checksums/jars and charts.pingcap.org → charts.pingcap.com for Helm repository entries.

Changes

Cohort / File(s)	Summary
TiKV Operator Setup `content/docs/3.0/tasks/try/tikv-operator.md`, `content/docs/4.0/tasks/try/tikv-operator.md`	Changed Helm repo URL from `https://charts.pingcap.org/` to `https://charts.pingcap.com/`.
Binary Deployment Instructions `content/docs/3.0/tasks/deploy/binary.md`, `content/docs/4.0/tasks/deploy/binary.md`	Replaced TiDB tarball and `.sha256` download hosts from `download.pingcap.org` to `download.pingcap.com` in single‑machine and multi‑node sections.
Test Installation Guides `content/docs/5.1/.../deploy/install/test.md`, `content/docs/6.1/.../deploy/install/test.md`, `content/docs/6.5/.../deploy/install/test.md`, `content/docs/7.1/.../deploy/install/test.md`, `content/docs/dev/.../deploy/install/test.md`	Replaced `download.pingcap.org` → `download.pingcap.com` for TiDB binary and checksum download URLs across version branches.
Verification & Java Client `content/docs/5.1/.../deploy/install/verify.md`, `content/docs/6.1/.../deploy/install/verify.md`, `content/docs/6.5/.../deploy/install/verify.md`, `content/docs/7.1/.../deploy/install/verify.md`, `content/docs/dev/.../deploy/install/verify.md`	Updated `tikv-client-java.jar` (and related jar) download URLs to `download.pingcap.com`.
Monitoring Deployment `content/docs/5.1/.../deploy/monitor/deploy.md`, `content/docs/6.1/.../deploy/monitor/deploy.md`, `content/docs/6.5/.../deploy/monitor/deploy.md`, `content/docs/7.1/.../deploy/monitor/deploy.md`, `content/docs/dev/.../deploy/monitor/deploy.md`	Switched Prometheus, node_exporter, and Grafana `wget` URLs to `download.pingcap.com` (same filenames/versions).
PD Control Reference `content/docs/5.1/.../reference/CLI/pd-ctl.md`, `content/docs/6.1/.../reference/CLI/pd-ctl.md`, `content/docs/6.5/.../reference/CLI/pd-ctl.md`, `content/docs/7.1/.../reference/CLI/pd-ctl.md`, `content/docs/dev/.../reference/CLI/pd-ctl.md`	Updated pd-ctl package and `.sha256` URLs to `download.pingcap.com` and aligned `{version}` example URL.
PD Recover Reference `content/docs/5.1/.../reference/CLI/pd-recover.md`, `content/docs/6.1/.../reference/CLI/pd-recover.md`, `content/docs/6.5/.../reference/CLI/pd-recover.md`, `content/docs/7.1/.../reference/CLI/pd-recover.md`, `content/docs/dev/.../reference/CLI/pd-recover.md`	Replaced TiDB package and checksum URLs with `download.pingcap.com` and updated `{version}` example links.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Poem

🐰 A nimble rabbit nibbles links,
Swapping .org for shiny .com kinks.
Across the docs I hop and cheer,
URLs aligned far and near—
Hooray! 🥕

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'docs: replace deprecated PingCAP domains' accurately and concisely describes the primary change in the pull request—updating domain references across documentation files.
Description check	✅ Passed	The description clearly explains what was changed (deprecated domain replacements), why (domain updates), and includes validation steps performed, adequately covering the PR's objectives.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

Create PR with unit tests

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

coderabbitai

Actionable comments posted: 2

🧹 Nitpick comments (1)

content/docs/3.0/tasks/deploy/binary.md (1)
31-31: Note: Protocol inconsistency for SHA256 checksum URL.

Line 31 (and line 101) use http:// instead of https:// for the SHA256 checksum download. While this is not introduced by this PR, consider updating to https:// for consistency and security.
🔒 Suggested protocol update
-    wget http://download.pingcap.com/tidb-latest-linux-amd64.sha256
+    wget https://download.pingcap.com/tidb-latest-linux-amd64.sha256
Apply the same change at line 101.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.

In `@content/docs/3.0/tasks/deploy/binary.md` at line 31, Update the SHA256
checksum download commands to use HTTPS instead of HTTP: locate the two wget
lines that download "tidb-latest-linux-amd64.sha256" (the occurrences using
"http://download.pingcap.com/tidb-latest-linux-amd64.sha256") and change their
URLs to "https://download.pingcap.com/tidb-latest-linux-amd64.sha256" to ensure
protocol consistency and security.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@content/docs/6.5/deploy/install/test.md`:
- Around line 89-90: The .sha256 checksum downloads use insecure HTTP; update
the wget invocations that fetch the checksum files (e.g., the lines invoking
wget http://download.pingcap.com/...tidb-latest-linux-amd64.sha256 and the other
similar .sha256 wget) to use HTTPS instead so the checksum cannot be tampered
with in transit; locate the wget commands that reference ".sha256" (the checksum
download commands) and replace "http://" with "https://" for each occurrence.

In `@content/docs/dev/deploy/install/test.md`:
- Line 90: Replace the insecure HTTP checksum download command so it uses HTTPS:
update the wget invocation that fetches "tidb-latest-linux-amd64.sha256" (and
the other occurrence around the same block) to use
https://download.pingcap.com/tidb-latest-linux-amd64.sha256 instead of http://
so the sha256 checksum file is fetched over TLS and cannot be modified in
transit.

---

Nitpick comments:
In `@content/docs/3.0/tasks/deploy/binary.md`:
- Line 31: Update the SHA256 checksum download commands to use HTTPS instead of
HTTP: locate the two wget lines that download "tidb-latest-linux-amd64.sha256"
(the occurrences using
"http://download.pingcap.com/tidb-latest-linux-amd64.sha256") and change their
URLs to "https://download.pingcap.com/tidb-latest-linux-amd64.sha256" to ensure
protocol consistency and security.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

Push a commit to this branch (recommended)
Create a new PR with the fixes

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 50c181e7-a71a-433a-aad6-da9d5a8a1984

📥 Commits

Reviewing files that changed from the base of the PR and between 1578bc3 and 7856116.

📒 Files selected for processing (29)

content/docs/3.0/tasks/deploy/binary.md
content/docs/3.0/tasks/try/tikv-operator.md
content/docs/4.0/tasks/deploy/binary.md
content/docs/4.0/tasks/try/tikv-operator.md
content/docs/5.1/deploy/install/test.md
content/docs/5.1/deploy/install/verify.md
content/docs/5.1/deploy/monitor/deploy.md
content/docs/5.1/reference/CLI/pd-ctl.md
content/docs/5.1/reference/CLI/pd-recover.md
content/docs/6.1/deploy/install/test.md
content/docs/6.1/deploy/install/verify.md
content/docs/6.1/deploy/monitor/deploy.md
content/docs/6.1/reference/CLI/pd-ctl.md
content/docs/6.1/reference/CLI/pd-recover.md
content/docs/6.5/deploy/install/test.md
content/docs/6.5/deploy/install/verify.md
content/docs/6.5/deploy/monitor/deploy.md
content/docs/6.5/reference/CLI/pd-ctl.md
content/docs/6.5/reference/CLI/pd-recover.md
content/docs/7.1/deploy/install/test.md
content/docs/7.1/deploy/install/verify.md
content/docs/7.1/deploy/monitor/deploy.md
content/docs/7.1/reference/CLI/pd-ctl.md
content/docs/7.1/reference/CLI/pd-recover.md
content/docs/dev/deploy/install/test.md
content/docs/dev/deploy/install/verify.md
content/docs/dev/deploy/monitor/deploy.md
content/docs/dev/reference/CLI/pd-ctl.md
content/docs/dev/reference/CLI/pd-recover.md

coderabbitai · 2026-04-02T10:40:41Z

+    wget https://download.pingcap.com/tidb-latest-linux-amd64.tar.gz
+    wget http://download.pingcap.com/tidb-latest-linux-amd64.sha256


⚠️ Potential issue | 🟠 Major

Use HTTPS for .sha256 downloads to preserve integrity guarantees.

The checksum files are still fetched via http:// (Line 90, Line 160). This undermines the checksum verification step because the checksum itself can be tampered with in transit.

🔧 Proposed fix

- wget http://download.pingcap.com/tidb-latest-linux-amd64.sha256 + wget https://download.pingcap.com/tidb-latest-linux-amd64.sha256 ... - wget http://download.pingcap.com/tidb-latest-linux-amd64.sha256 + wget https://download.pingcap.com/tidb-latest-linux-amd64.sha256

Also applies to: 159-160

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed. In `@content/docs/6.5/deploy/install/test.md` around lines 89 - 90, The .sha256 checksum downloads use insecure HTTP; update the wget invocations that fetch the checksum files (e.g., the lines invoking wget http://download.pingcap.com/...tidb-latest-linux-amd64.sha256 and the other similar .sha256 wget) to use HTTPS instead so the checksum cannot be tampered with in transit; locate the wget commands that reference ".sha256" (the checksum download commands) and replace "http://" with "https://" for each occurrence.

coderabbitai · 2026-04-02T10:40:41Z

-    wget https://download.pingcap.org/tidb-latest-linux-amd64.tar.gz
-    wget http://download.pingcap.org/tidb-latest-linux-amd64.sha256
+    wget https://download.pingcap.com/tidb-latest-linux-amd64.tar.gz
+    wget http://download.pingcap.com/tidb-latest-linux-amd64.sha256


⚠️ Potential issue | 🟠 Major

Use HTTPS for checksum downloads to preserve integrity guarantees.

The .sha256 files are still fetched over plain HTTP. If the checksum file can be modified in transit, sha256sum -c no longer provides trustworthy verification.

🔧 Proposed fix

- wget http://download.pingcap.com/tidb-latest-linux-amd64.sha256 + wget https://download.pingcap.com/tidb-latest-linux-amd64.sha256 ... - wget http://download.pingcap.com/tidb-latest-linux-amd64.sha256 + wget https://download.pingcap.com/tidb-latest-linux-amd64.sha256

Also applies to: 160-160

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed. In `@content/docs/dev/deploy/install/test.md` at line 90, Replace the insecure HTTP checksum download command so it uses HTTPS: update the wget invocation that fetches "tidb-latest-linux-amd64.sha256" (and the other occurrence around the same block) to use https://download.pingcap.com/tidb-latest-linux-amd64.sha256 instead of http:// so the sha256 checksum file is fetched over TLS and cannot be modified in transit.

Signed-off-by: wuhuizuo <wuhuizuo@126.com>

wuhuizuo · 2026-04-07T04:29:02Z

-    wget https://download.pingcap.org/tidb-latest-linux-amd64.tar.gz
-    wget http://download.pingcap.org/tidb-latest-linux-amd64.sha256
+    wget https://download.pingcap.com/tidb-latest-linux-amd64.tar.gz
+    wget http://download.pingcap.com/tidb-latest-linux-amd64.sha256
