SSL Certificate Issue for opensource.lk on GitHub Pages

[manupawickramasinghe]

Issue: opensource.lk is not serving over HTTPS

The domain opensource.lk is connected to LSFLK.github.io via a CNAME file, but the site does not have an SSL certificate. Visitors accessing https://opensource.lk see a security warning or cannot connect.

Root Cause

The DNS configuration for opensource.lk is missing one of the four required GitHub Pages A records. GitHub Pages requires all four IPs to be present for its global CDN to properly provision Let's Encrypt SSL certificates.

Current DNS A records

GitHub Pages IP	Present
185.199.108.153	Yes
185.199.109.153	Yes
185.199.110.153	Yes
185.199.111.153	No — MISSING

Missing IPv6 (AAAA) records

GitHub Pages IPv6
2606:50c0:8000::153
2606:50c0:8001::153
2606:50c0:8002::153
2606:50c0:8003::153

Steps to fix

1. Update DNS records

Add the missing A record and all four AAAA records to the opensource.lk DNS configuration:

A records (IPv4):

• 185.199.108.153
• 185.199.109.153
• 185.199.110.153
• 185.199.111.153

AAAA records (IPv6):

• 2606:50c0:8000::153
• 2606:50c0:8001::153
• 2606:50c0:8002::153
• 2606:50c0:8003::153

Note: The DNS for opensource.lk appears to be managed via Ceynet. Domain admin access is needed to make these changes.

2. Enable Enforce HTTPS in GitHub

1. Go to https://github.com/LSFLK/LSFLK.github.io/settings/pages
2. Wait a few minutes after DNS changes propagate
3. Under "Enforce HTTPS", check the box (it will appear once the certificate is provisioned)

Verification

• dig opensource.lk A +short should return all 4 IPs
• curl -I https://opensource.lk should return HTTP 200 without TLS errors
• The "Enforce HTTPS" option should be available in the repo settings

References

• GitHub Pages custom domain docs
• GitHub Pages IP addresses