This is an automated email from the ASF dual-hosted git repository.
potiuk pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/airflow.git
The following commit(s) were added to refs/heads/main by this push:
new e75dd479e9a Add dependabot and code-scanning reviews before release
(#57227)
e75dd479e9a is described below
commit e75dd479e9a2000536eb053d9f2b80d06e2beeb3
Author: Jarek Potiuk <[email protected]>
AuthorDate: Sat Oct 25 10:42:28 2025 +0200
Add dependabot and code-scanning reviews before release (#57227)
---
dev/README_RELEASE_AIRFLOW.md | 4 ++++
dev/README_RELEASE_HELM_CHART.md | 4 ++++
dev/README_RELEASE_PROVIDERS.md | 5 +++++
dev/README_RELEASE_PYTHON_CLIENT.md | 4 ++++
4 files changed, 17 insertions(+)
diff --git a/dev/README_RELEASE_AIRFLOW.md b/dev/README_RELEASE_AIRFLOW.md
index 04228886d57..c55d194aff9 100644
--- a/dev/README_RELEASE_AIRFLOW.md
+++ b/dev/README_RELEASE_AIRFLOW.md
@@ -73,6 +73,10 @@ Please review and ensure that all security issues marked for
the release have be
addressed and resolved. Ping security team (comment in the issues) if anything
missing or
the issue does not seem to be addressed.
+Additionally, the [dependabot
alerts](https://github.com/apache/airflow/security/dependabot) and
+code [scanning
alerts](https://github.com/apache/airflow/security/code-scanning) should be
reviewed
+and security team should be pinged to review and resolve them.
+
# Selecting what to put into the release
The first step of a release is to work out what is being included. This
differs based on whether it is a major/minor or a patch release.
diff --git a/dev/README_RELEASE_HELM_CHART.md b/dev/README_RELEASE_HELM_CHART.md
index d3654d69c8d..6c5cdbe71cf 100644
--- a/dev/README_RELEASE_HELM_CHART.md
+++ b/dev/README_RELEASE_HELM_CHART.md
@@ -71,6 +71,10 @@ Please review and ensure that all security issues marked for
the release have be
addressed and resolved. Ping security team (comment in the issues) if anything
missing or
the issue does not seem to be addressed.
+Additionally, the [dependabot
alerts](https://github.com/apache/airflow/security/dependabot) and
+code [scanning
alerts](https://github.com/apache/airflow/security/code-scanning) should be
reviewed
+and security team should be pinged to review and resolve them.
+
# Prepare the Apache Airflow Helm Chart Release Candidate
## Pre-requisites
diff --git a/dev/README_RELEASE_PROVIDERS.md b/dev/README_RELEASE_PROVIDERS.md
index 0b41172e7e5..fd308e658a6 100644
--- a/dev/README_RELEASE_PROVIDERS.md
+++ b/dev/README_RELEASE_PROVIDERS.md
@@ -90,6 +90,11 @@ Please review and ensure that all security issues marked for
the release have be
addressed and resolved. Ping security team (comment in the issues) if anything
missing or
the issue does not seem to be addressed.
+Additionally, the [dependabot
alerts](https://github.com/apache/airflow/security/dependabot) and
+code [scanning
alerts](https://github.com/apache/airflow/security/code-scanning) should be
reviewed
+and security team should be pinged to review and resolve them.
+
+
# Bump min Airflow version for providers
1. Update `PROVIDERS_COMPATIBILITY_TESTS_MATRIX` in
`src/airflow_breeze/global_constants.py` to remove
diff --git a/dev/README_RELEASE_PYTHON_CLIENT.md
b/dev/README_RELEASE_PYTHON_CLIENT.md
index 0be0938f494..4fc47a9aad2 100644
--- a/dev/README_RELEASE_PYTHON_CLIENT.md
+++ b/dev/README_RELEASE_PYTHON_CLIENT.md
@@ -50,6 +50,10 @@ Please review and ensure that all security issues marked for
the release have be
addressed and resolved. Ping security team (comment in the issues) if anything
missing or
the issue does not seem to be addressed.
+Additionally, the [dependabot
alerts](https://github.com/apache/airflow/security/dependabot) and
+code [scanning
alerts](https://github.com/apache/airflow/security/code-scanning) should be
reviewed
+and security team should be pinged to review and resolve them.
+
# Release package
The client versioning is independent of the Airflow versioning.
