This is an automated email from the ASF dual-hosted git repository.
arm pushed a change to branch gha-distributions
in repository https://gitbox.apache.org/repos/asf/tooling-trusted-releases.git
discard 8f9c280 Specify workflow name based on platform - we'll kick off the
right one
discard d284a33 Add new SSH register endpoint for distributions
discard 919d618 Rename GHA task as it's just for distributions now. Enable
buttons to call it throughout the system. Monitor failed and in-progress
distributions on finish page. Bump dependencies for vulnerability.
add 82855d9 Add a POSIX shell script to simplify signing files with GnuPG
add 96e89c2 Update dependencies
add c48aaab Document the script to simplify file signing
add 3220d76 Exclude generated files from lightweight checks in addition
to RAT checks
add 67de1b9 Update pyright and fix types to conform to its stricter
checking
add 49b7cdd Restore validation of the announce download path and update
tests
add 9ae7d6e Update and fix voting tests
add afb9117 Make compose tests less susceptible to issues from fragile
polling
add 8229b79 Add an API endpoint to get the release policy of a project
add 621a8ce Ensure that both sorts of license checks are used in report
tests
add 1f9b760 Fix an intermittent problem with Playwright tests
add c4c9b19 Change the Docker ports to 8080 to match the local
development defaults
add 2bbfd63 Fix an intermittent error when running Playwright tests to
add a file
add 3059c05 Add license check exclusion properties to release policies
add d3978f3 Group unit tests and use a clearer name for the Playwright
test script
add 336962e Add permissions for issues in PR labeler workflow
add d72e3b0 Duplicate derived project release policies instead of cloning
by reference
add 4194fed Update the analysis workflow and allow it to be run manually
add d89e601 Remove localhost from the certificate generator and clarify
the reasoning
add 0aee1cf Remove the Ubuntu OCI container
add 2f3c2aa Document how to run the development server using OCI
containers
add 7f0911a Add simple unit tests for release policy license check
exclusion fields
add 47b774a Delete .github/workflows/pr-labeler.yml
add 5ac0564 Add comment to unused labeler configuration
add 1bbddbf Add license check exclude fields to the UI and related tests
add 12bb109 Doc tweaks
add a14383b New year
add 22a63e6 Add URL
add 7dab9ad Fix the NOTICE file check
add 5f97f4d Make the NOTICE file checker match a wider range of files
add 99013e9 Use exclusions from release policies in lightweight license
checks
add 702b4b3 Use exclusions from release policies in RAT checks
add 7465d9f Clarify platform compatibility
new ae6542d Rename GHA task as it's just for distributions now. Enable
buttons to call it throughout the system. Monitor failed and in-progress
distributions on finish page. Bump dependencies for vulnerability.
new 7c91744 Add new SSH register endpoint for distributions
new c25f041 Specify workflow name based on platform - we'll kick off the
right one
This update added new revisions after undoing existing revisions.
That is to say, some revisions that were in the old version of the
branch are not in the new version. This situation occurs
when a user --force pushes a change and generates a repository
containing something like this:
* -- * -- B -- O -- O -- O (8f9c280)
\
N -- N -- N refs/heads/gha-distributions (c25f041)
You should already have received notification emails for all of the O
revisions, and so the following emails describe only the N revisions
from the common base, B.
Any revisions marked "omit" are not gone; other references still
refer to them. Any revisions marked "discard" are gone forever.
The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
.github/labeler.yml | 3 +-
.github/workflows/analyze.yml | 5 +-
.github/workflows/build.yml | 4 +-
.github/workflows/pr-labeler.yml | 18 --
Dockerfile.alpine | 2 +-
Dockerfile.ubuntu | 137 -------------
Makefile | 17 +-
NOTICE | 4 +-
README.md | 8 +-
atr/api/__init__.py | 37 ++++
atr/archives.py | 2 +-
atr/config.py | 2 +-
atr/constants.py | 10 +
atr/docs/code-conventions.md | 2 +
atr/docs/index.md | 1 +
atr/docs/running-and-creating-tests.md | 2 +-
atr/docs/running-the-server.md | 50 +++--
atr/docs/signing-artifacts.md | 71 +++++++
atr/docs/user-guide.md | 4 +
atr/get/projects.py | 2 +
atr/models/api.py | 24 +++
atr/models/sql.py | 44 ++++
atr/sbom/osv.py | 8 +-
atr/shared/projects.py | 11 +
atr/static/js/src/announce-confirm.js | 50 ++++-
atr/static/sh/gpgsign.sh | 167 +++++++++++++++
atr/storage/writers/policy.py | 7 +
atr/storage/writers/project.py | 8 +-
atr/tasks/checks/license.py | 223 +++++++++++----------
atr/tasks/checks/rat.py | 106 +++++++---
atr/tasks/gha.py | 2 +-
atr/templates/includes/footer.html | 2 +-
docker-compose.yml | 2 +-
migrations/versions/0035_2026.01.08_2bbfd636.py | 29 +++
playwright/test.py | 15 +-
pyproject.toml | 3 +
scripts/build | 5 +-
tests/docker-compose.yml | 4 +-
tests/e2e/announce/test_get.py | 41 ----
tests/e2e/compose/test_get.py | 15 +-
tests/e2e/helpers.py | 9 +-
tests/{datasources => e2e/policy}/__init__.py | 0
tests/e2e/{root => policy}/conftest.py | 25 ++-
tests/e2e/{announce => policy}/helpers.py | 20 +-
tests/e2e/policy/test_get.py | 49 +++++
tests/e2e/policy/test_post.py | 72 +++++++
tests/e2e/report/conftest.py | 14 +-
tests/e2e/sbom/conftest.py | 25 +--
.../version.py => tests/e2e/sbom/helpers.py | 8 +-
tests/e2e/sbom/test_post.py | 19 +-
tests/e2e/voting/test_get.py | 62 +-----
tests/{run-tests.sh => run-playwright.sh} | 0
tests/run-unit.sh | 7 +
{atr => tests/unit}/__init__.py | 0
{atr => tests/unit/datasources}/__init__.py | 0
tests/{ => unit}/datasources/test_apache.py | 54 ++---
.../datasources/testdata/committees.json | 0
tests/{ => unit}/datasources/testdata/groups.json | 0
.../datasources/testdata/ldap_projects.json | 0
.../{ => unit}/datasources/testdata/podlings.json | 0
.../{ => unit}/datasources/testdata/projects.json | 0
.../datasources/testdata/retired_committees.json | 0
tests/unit/test_checks_license.py | 61 ++++++
tests/unit/test_checks_rat.py | 53 +++++
tests/unit/test_policy_excludes_model.py | 66 ++++++
uv.lock | 2 +-
66 files changed, 1152 insertions(+), 541 deletions(-)
delete mode 100644 .github/workflows/pr-labeler.yml
delete mode 100644 Dockerfile.ubuntu
create mode 100644 atr/docs/signing-artifacts.md
create mode 100755 atr/static/sh/gpgsign.sh
create mode 100644 migrations/versions/0035_2026.01.08_2bbfd636.py
rename tests/{datasources => e2e/policy}/__init__.py (100%)
copy tests/e2e/{root => policy}/conftest.py (66%)
copy tests/e2e/{announce => policy}/helpers.py (62%)
create mode 100644 tests/e2e/policy/test_get.py
create mode 100644 tests/e2e/policy/test_post.py
copy atr/sbom/constants/version.py => tests/e2e/sbom/helpers.py (79%)
rename tests/{run-tests.sh => run-playwright.sh} (100%)
create mode 100755 tests/run-unit.sh
copy {atr => tests/unit}/__init__.py (100%)
copy {atr => tests/unit/datasources}/__init__.py (100%)
rename tests/{ => unit}/datasources/test_apache.py (100%)
rename tests/{ => unit}/datasources/testdata/committees.json (100%)
rename tests/{ => unit}/datasources/testdata/groups.json (100%)
rename tests/{ => unit}/datasources/testdata/ldap_projects.json (100%)
rename tests/{ => unit}/datasources/testdata/podlings.json (100%)
rename tests/{ => unit}/datasources/testdata/projects.json (100%)
rename tests/{ => unit}/datasources/testdata/retired_committees.json (100%)
create mode 100644 tests/unit/test_checks_license.py
create mode 100644 tests/unit/test_checks_rat.py
create mode 100644 tests/unit/test_policy_excludes_model.py
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
