commits  

Messages by Thread

• (tooling-trusted-releases) branch main updated (8fe9234b -> 0abf5722) sbp
• (tooling-trusted-releases) branch sbp updated (8d9c8067 -> 0abf5722) sbp
  • (tooling-trusted-releases) 01/01: Improve the documentation for moving files sbp
• (tooling-trusted-releases) branch main updated (8d9c8067 -> 8fe9234b) arm
• (tooling-trusted-releases) branch quarantine_expansion updated (02aa5b7e -> 590caf60) arm
• (tooling-trusted-releases) branch quarantine_expansion created (now 02aa5b7e) arm
  • (tooling-trusted-releases) 01/01: #1177 - allow zip format archives (jar, war, apk, vsix, whl, nar, nbm) to be quarantine checked arm
• (tooling-trusted-releases) branch arm updated (31d133a6 -> 8fe9234b) arm
  • (tooling-trusted-releases) 01/01: #510 - any PMC member can delete a project arm
• (tooling-agents) branch main updated: Adding rustopyian constructinator akm
• (tooling-agents) branch main updated: Adding titles akm
• (tooling-trusted-releases) branch main updated (a75f5bb0 -> 8d9c8067) sbp
• (tooling-trusted-releases) branch sbp updated: Classify npm archives as binaries based on archive content sbp
• (tooling-trusted-releases) branch arm updated: #510 - any PMC member can delete a project arm
• (tooling-trusted-releases) branch main updated (840fd7a6 -> a75f5bb0) sbp
• (tooling-trusted-releases) branch sbp updated (d1a81c39 -> a75f5bb0) sbp
  • (tooling-trusted-releases) 01/01: Check that ssh connections are still active sbp
• (tooling-trusted-releases) branch main updated (8243af49 -> 840fd7a6) arm
• (tooling-trusted-releases) branch exarch_changes deleted (was 9fb6891d) arm
• (tooling-trusted-releases) branch arm updated: #997 and #1022 - rework extraction and quarantine logic to rely on exarch arm
• (tooling-trusted-releases) branch arm updated (ac8b1d35 -> 8243af49) arm
• (tooling-trusted-releases) branch main updated: #1152 - replace test JWT generation with PAT-bound JWTs arm
• (tooling-trusted-releases) branch sbp updated (f820f929 -> d1a81c39) sbp
  • (tooling-trusted-releases) 01/01: Skip more false positives in vote tabulation sbp
• (tooling-trusted-releases) branch main updated (8741aec7 -> d1a81c39) sbp
• (tooling-trusted-releases) branch arm updated (df31d083 -> ac8b1d35) arm
• (tooling-trusted-releases) branch exarch_changes updated (53dcefa1 -> 9fb6891d) arm
• (tooling-trusted-releases) branch arm updated (d60dab9a -> df31d083) arm
  • (tooling-trusted-releases) 01/01: #1152 - replace test JWT generation with PAT-bound JWTs arm
• (tooling-trusted-releases) branch exarch_changes updated (cc927bbf -> 53dcefa1) arm
• (tooling-trusted-releases) branch main updated: Update audience values in jwtoken.py sbp
• (tooling-trusted-releases) branch set-jwt-oidc-audience deleted (was 13c33e3b) sbp
• (tooling-trusted-releases) branch set-jwt-oidc-audience created (now 13c33e3b) wave
  • (tooling-trusted-releases) 01/01: Update audience values in jwtoken.py wave
• (tooling-trusted-releases) branch arm updated (452ab67c -> d60dab9a) arm
  • (tooling-trusted-releases) 01/01: #1152 - replace test JWT generation with PAT-bound JWTs arm
• (tooling-trusted-releases) branch arm updated: #1152 - replace test JWT generation with PAT-bound JWTs arm
• (tooling-trusted-releases) branch main updated (cd70c0e1 -> f820f929) sbp
• (tooling-trusted-releases) branch sbp updated (97e89839 -> f820f929) sbp
  • (tooling-trusted-releases) 01/01: Improve the source artifact check UI and add fallbacks sbp
• (tooling-trusted-releases) branch main updated: #1117 - document visibility of vote tabulation arm
• (tooling-trusted-releases) branch main updated: #1056 - audit guidance for public openapi docs arm
• (tooling-trusted-releases) branch main updated: #1050 - audit guidance for token type discrimination arm
• (tooling-trusted-releases) branch exarch_changes updated (fafccfcb -> cc927bbf) arm
• (tooling-trusted-releases) branch main updated: #1041 - switch to committee admin instead of member for key regeneration arm
• (tooling-trusted-releases) branch main updated: #1064: Add audit guidance arm
• (tooling-trusted-releases) branch exarch_changes created (now fafccfcb) arm
  • (tooling-trusted-releases) 01/01: #977 and #1022 - rework extraction and quarantine logic to rely on exarch arm
• (tooling-trusted-releases) branch arm updated (dfd1d722 -> 5307d356) arm
• (tooling-trusted-releases) branch main updated: #1074 - HTTP timeouts for external calls arm
• (tooling-trusted-releases) branch main updated (5884610c -> 97e89839) sbp
• (tooling-trusted-releases) branch main updated (1f9abe57 -> 5884610c) sbp
• (tooling-trusted-releases) branch sbp updated: Improve error messages on safe type validation failures sbp
• (tooling-trusted-releases) branch sbp updated (b7b3f5c8 -> 5884610c) sbp
  • (tooling-trusted-releases) 01/01: Show a warning when there are insufficient binding votes sbp
• (tooling-trusted-releases) branch main updated: Invalidate SSH keys; fixes #737 sbp
• (tooling-trusted-releases) branch ssh-invalidate-737 deleted (was 2d3109a5) sbp
• (tooling-trusted-releases) branch main updated: #1039: Add a couple of check_access calls and some audit guidance arm
• (tooling-trusted-releases) branch only-show-execption-detail-in-dev deleted (was 9ed3ba01) wave
• (tooling-trusted-releases) branch main updated: Only show exception detail in dev environments (#1170) wave
• (tooling-trusted-releases) branch use-textcontent-not-innerhtml deleted (was 980eb428) wave
• (tooling-trusted-releases) branch main updated: Project filter use textContent and not innerHTML plus substring match (#1174) wave
• (tooling-trusted-releases) branch main updated (6c75f0c8 -> b7b3f5c8) sbp
• (tooling-trusted-releases) branch sbp updated: Check that at least one source archive is present in releases sbp
• (tooling-trusted-releases) branch only-show-execption-detail-in-dev updated (3591398b -> 9ed3ba01) sbp
• (tooling-trusted-releases) branch dependabot/uv/hypercorn-uvloop--approx-eq-0.18 deleted (was 1b662751) github-bot
• (tooling-trusted-releases) branch dependabot/uv/cyclonedx-python-lib-json-validation--gte-11.7.0 deleted (was de7d3716) github-bot
• (tooling-trusted-releases) branch dependabot/uv/quart-schema-pydantic--approx-eq-0.23 deleted (was b9f2c9eb) github-bot
• (tooling-trusted-releases) branch main updated (e1e5a7db -> 6c75f0c8) sbp
• (tooling-trusted-releases) branch sbp updated: Make Dependabot update uv lockfiles only, to work around a bug sbp
• (tooling-trusted-releases) branch dependabot/uv/quart-schema-pydantic--approx-eq-0.23 updated (a8a66c0e -> b9f2c9eb) github-bot
• (tooling-trusted-releases) branch dependabot/uv/hypercorn-uvloop--approx-eq-0.18 updated (bfd66748 -> 1b662751) github-bot
• (tooling-trusted-releases) branch dependabot/uv/cyclonedx-python-lib-json-validation--gte-11.7.0 updated (dac3fb7e -> de7d3716) github-bot
• (tooling-trusted-releases) branch main updated (4217e4db -> e1e5a7db) sbp
• (tooling-trusted-releases) branch sbp updated (3d139276 -> e1e5a7db) sbp
  • (tooling-trusted-releases) 01/01: Use explicit ranges to test Dependabot behaviour sbp
• (tooling-trusted-releases) branch main updated: #1027 - remove deprecated admin.post decorator arm
• (tooling-trusted-releases) branch dependabot/uv/cyclonedx-python-lib-json-validation--gte-11.7.0 updated (287497cd -> dac3fb7e) github-bot
• (tooling-trusted-releases) branch dependabot/uv/hypercorn-uvloop--approx-eq-0.18 updated (4f167b88 -> bfd66748) github-bot
• (tooling-trusted-releases) branch dependabot/uv/quart-schema-pydantic--approx-eq-0.23 updated (10a41659 -> a8a66c0e) github-bot
• (tooling-trusted-releases) branch use-textcontent-not-innerhtml updated (4aa5f521 -> 980eb428) sbp
• (tooling-trusted-releases) branch dependabot/uv/quart-schema-pydantic--approx-eq-0.23 updated (98d7833a -> 10a41659) github-bot
• (tooling-trusted-releases) branch dependabot/uv/cyclonedx-python-lib-json-validation--gte-11.7.0 updated (c559f22d -> 287497cd) github-bot
• (tooling-trusted-releases) branch dependabot/uv/hypercorn-uvloop--approx-eq-0.18 updated (5f450907 -> 4f167b88) github-bot
• (tooling-trusted-releases) branch main updated (c18dbfd5 -> 3d139276) sbp
• (tooling-trusted-releases) branch sbp updated (f1fdb582 -> 3d139276) sbp
  • (tooling-trusted-releases) 01/01: Align Dependabot with our update strategy, and update dependencies sbp
• (tooling-trusted-releases) branch main updated: Add impersonation banner so users know they're browsing as someone else arm
• (tooling-trusted-releases) branch main updated: #987 - type-level validation for ASFUIDs arm
• (tooling-trusted-releases) branch main updated (2728e59d -> dfd1d722) arm
• (tooling-trusted-releases) branch arm updated (13f15490 -> dfd1d722) arm
  • (tooling-trusted-releases) 01/01: #1053 - Move tasks/list endpoint to /admin/tasks/list, shares permissions with UI view of tasks. arm
• (tooling-trusted-releases) branch main updated: #1118 - add commentary around extracting UID from token before verification arm
  • (tooling-trusted-releases) branch main updated: #1118 - add commentary around extracting UID from token before verification arm
• (tooling-trusted-releases) branch main updated: #986 - protocol validation for URLs before rendering arm
• (tooling-trusted-releases) branch use-textcontent-not-innerhtml updated (c82c5fe5 -> 4aa5f521) wave
• (tooling-trusted-releases) branch use-textcontent-not-innerhtml updated (bc83c273 -> c82c5fe5) wave
• (tooling-trusted-releases) branch use-textcontent-not-innerhtml created (now bc83c273) wave
  • (tooling-trusted-releases) 01/01: Use textContent and not innerHTML wave
• (tooling-trusted-releases) branch dependabot/uv/quart-schema-pydantic--approx-eq-0.23 created (now 98d7833a) github-bot
• (tooling-trusted-releases) branch dependabot/uv/cyclonedx-python-lib-json-validation--gte-11.7.0 created (now c559f22d) github-bot
• (tooling-trusted-releases) branch dependabot/uv/hypercorn-uvloop--approx-eq-0.18 created (now 5f450907) github-bot
• (tooling-agents) branch main updated: Adding line numbers akm
• (tooling-trusted-releases) branch only-show-execption-detail-in-dev created (now 3591398b) wave
  • (tooling-trusted-releases) 01/01: Only show exception detail in dev environments wave
• (tooling-trusted-releases) branch email-logging-content deleted (was 327d5190) wave
• (tooling-trusted-releases) branch main updated: Do not log the email message body (#1168) wave
• (tooling-trusted-releases) branch email-logging-content created (now 327d5190) wave
  • (tooling-trusted-releases) 01/01: Do not log the email message body wave
• (tooling-trusted-releases) branch main updated (32484b02 -> f1fdb582) sbp
• (tooling-trusted-releases) branch main updated (aa242d5c -> 32484b02) sbp
• (tooling-trusted-releases) branch main updated (beb7e67f -> aa242d5c) sbp
• (tooling-trusted-releases) branch main updated (13f15490 -> beb7e67f) sbp
• (tooling-trusted-releases) branch ssh-invalidate-737 updated (77078e4a -> 2d3109a5) akm
• (tooling-trusted-releases) branch main updated (6efb1c73 -> 13f15490) arm
• (tooling-trusted-releases) branch sbp updated (26f62cd4 -> beb7e67f) sbp
  • (tooling-trusted-releases) 01/01: Do not allow first round podling votes to be sent to private lists sbp
• (tooling-trusted-releases) branch ssh-invalidate-737 updated (9e26cdba -> 77078e4a) akm
• (tooling-trusted-releases) branch sbp updated: Add an incubation disclaimer to announcement messages as appropriate sbp
  • (tooling-trusted-releases) branch sbp updated: Add an incubation disclaimer to announcement messages as appropriate sbp
• (tooling-trusted-releases) branch sbp updated: Fix errors in the UI related to second round votes for podlings sbp
  • (tooling-trusted-releases) branch sbp updated: Fix errors in the UI related to second round votes for podlings sbp
• (tooling-trusted-releases) branch sbp updated (a54b4140 -> 18de0cd0) sbp
  • (tooling-trusted-releases) 01/01: Do not allow first round podling votes to be sent to private lists sbp
• (tooling-trusted-releases) branch arm deleted (was 4dcda50a) arm
• (tooling-trusted-releases) branch arm created (now 4dcda50a) arm
• (tooling-trusted-releases) branch main updated (938784db -> 6efb1c73) arm
  • (tooling-trusted-releases) 01/04: #1158 - move error handling to database arm
  • (tooling-trusted-releases) 02/04: #776 - Add 50k limit to vote comment and add nav link to jump back to form arm
  • (tooling-trusted-releases) 04/04: #631 - add nav pinning to preferences arm
  • (tooling-trusted-releases) 03/04: #1058 - purge expired workflowssh keys arm
• (tooling-trusted-releases) branch main updated (9fff339f -> 938784db) sbp
• (tooling-trusted-releases) branch sbp updated: Remove UI access checks for POST routes sbp
  • (tooling-trusted-releases) branch sbp updated: Remove UI access checks for POST routes sbp
  • (tooling-trusted-releases) branch sbp updated: Remove UI access checks for POST routes sbp
• (tooling-trusted-releases) branch sbp updated: Do not allow first round podling votes to be sent to private lists sbp
• (tooling-trusted-releases) branch arm updated (3501ae1f -> 4dcda50a) arm
• (tooling-trusted-releases) branch jwtoken_multiple_sources deleted (was d553c62c) arm
• (tooling-trusted-releases) branch safe_path deleted (was 1206ad31) arm
• (tooling-trusted-releases) branch arm updated (354d5f62 -> 3501ae1f) arm
• (tooling-trusted-releases) branch main updated (c1cc643d -> 9fff339f) sbp
• (tooling-trusted-releases) branch main updated (238b141d -> c1cc643d) sbp
• (tooling-trusted-releases) branch sbp updated: Publish podling release files to the correct downloads path sbp
• (tooling-trusted-releases) branch sbp updated: Add regression tests for a bug in second round vote tabulation sbp
• (tooling-trusted-releases) branch main updated (8d755068 -> 238b141d) sbp
• (tooling-trusted-releases) branch sbp updated: Make votes binding on incubator membership in second round tabulation sbp
• (tooling-trusted-releases) branch sbp updated (bfb3514f -> 238b141d) sbp
  • (tooling-trusted-releases) 01/01: Mention the use of SSH keys for rsync upload in the documentation sbp
• (tooling-trusted-releases) branch main updated: Adding ssh specifics to docs; fixes #1024 sbp
• (tooling-trusted-releases) branch ssh-authentication-docs-1024 deleted (was 98d253bc) sbp
• (tooling-trusted-releases) branch arm updated (c521574b -> 354d5f62) arm
• (tooling-trusted-releases) branch main updated: Add auth audit logging section to documentation arm
• (tooling-trusted-releases) branch database_error_handling updated (2afec15e -> f3ace8ab) arm
• (tooling-trusted-releases) branch database_error_handling deleted (was f3ace8ab) arm
• (tooling-trusted-releases) branch arm updated (6d91a88b -> c521574b) arm
  • (tooling-trusted-releases) 02/02: #776 - Add 50k limit to vote comment and add nav link to jump back to form arm
  • (tooling-trusted-releases) 01/02: #1158 - move error handling to database arm
• (tooling-trusted-releases) branch database_error_handling created (now 2afec15e) arm
  • (tooling-trusted-releases) 01/01: #1158 - move error handling to database arm
• (tooling-trusted-releases) branch arm updated (f2672f18 -> 6d91a88b) arm
• (tooling-trusted-releases) branch ci-staging-api-1151 created (now c2b3c31c) akm
  • (tooling-trusted-releases) 01/01: Adding endpoint to list projects using CI staging; fixes #1151 akm
• (tooling-trusted-releases) branch mermaid-update-1145 created (now 8a61431c) akm
  • (tooling-trusted-releases) 01/01: Adding mermaid back in; fixes #1145 akm
• (tooling-trusted-releases) branch ssh-authentication-docs-1024 created (now 98d253bc) akm
  • (tooling-trusted-releases) 01/01: Adding ssh specifics to docs; fixes #1024 akm
• (tooling-trusted-releases) branch main updated: Adding audit_guidance for redirect; fixes #995 akm
• (tooling-trusted-releases) branch main updated (5326ecb3 -> bfb3514f) sbp
• (tooling-trusted-releases) branch main updated (69b7ed3e -> 5326ecb3) sbp
• (tooling-trusted-releases) branch sbp updated: Remove a warning about second round recipient selection being incomplete sbp
• (tooling-trusted-releases) branch sbp updated (bd7cadaa -> 5326ecb3) sbp
  • (tooling-trusted-releases) 01/01: Make announcement e2e tests more stable sbp
• (tooling-trusted-releases) branch main updated (e723947e -> a23ed439) sbp
• (tooling-trusted-releases) branch main updated (a23ed439 -> 69b7ed3e) sbp
• (tooling-trusted-releases) branch main updated (f9c8db22 -> e723947e) sbp
• (tooling-trusted-releases) branch sbp updated (69b7ed3e -> bd7cadaa) sbp
  • (tooling-trusted-releases) 01/02: Make announcement e2e tests more stable sbp
  • (tooling-trusted-releases) 02/02: Remove a warning about second round recipient selection being incomplete sbp
• (tooling-trusted-releases) branch sbp updated: Send second round vote messages to the specified address sbp
• (tooling-trusted-releases) branch ssh-invalidate-737 updated (000bacae -> 9e26cdba) akm
• (tooling-trusted-releases) branch main updated (a1807c28 -> f9c8db22) sbp
• (tooling-trusted-releases) branch sbp updated: Skip recipient validation for second rounds sbp
• (tooling-trusted-releases) branch main updated (f2672f18 -> a1807c28) sbp
• (tooling-trusted-releases) branch sbp updated: Add UI for the second round vote recipient choice sbp
• (tooling-trusted-releases) branch sbp updated (f27df71c -> a1807c28) sbp
  • (tooling-trusted-releases) 01/01: Add supporting code for custom second round vote destinations sbp
• (tooling-docs) branch main updated: Update Pelican action to a newer version wave
• (tooling-trusted-releases) branch arm updated (ee5646c4 -> f2672f18) arm
• (tooling-trusted-releases) branch main updated (62216b11 -> f2672f18) arm
  • (tooling-trusted-releases) 01/01: #1002 - Validate vote duration (and fix API recipient handling) arm
• (tooling-trusted-releases) branch main updated: #1002 - Validate vote duration (and fix API recipient handling) arm
• (tooling-trusted-releases) branch main updated: #996 - Validate thread ID before using it arm
• (tooling-trusted-releases) branch main updated: Some additional auth audit logging arm
• (tooling-agents) branch main updated: Pulling in security guidance from https://cwiki.apache.org/confluence/display/BUILDS/GitHub+Actions+Security, https://infra.apache.org/github-actions-policy.html, and https://infra.apache.org/release-signing.html#automated-release-signing akm
• (tooling-trusted-releases) branch main updated (5fd0f2f5 -> f27df71c) sbp
• (tooling-trusted-releases) branch sbp updated: Add support for scoped signature provenance searches sbp
• (tooling-trusted-releases) branch main updated (43303b75 -> 5fd0f2f5) sbp
• (tooling-trusted-releases) branch sbp updated: Improve and fix some bugs in the signature provenance endpoint sbp
• (tooling-releases-client) branch main updated: Use the updated signature provenance endpoint sbp
• (tooling-trusted-releases) branch main updated (0751389d -> 43303b75) sbp

• Earlier messages