This is an automated email from the ASF dual-hosted git repository.
arm pushed a change to branch taint_tracking_types
in repository https://gitbox.apache.org/repos/asf/tooling-trusted-releases.git
discard 3c783f43 Latest changes - note: broken
discard 687e59ae Add taint tracking types to API routes
discard 9ce43214 Prefix some unused variables
omit 8c39c33c Fix JWT token validation
omit 02ec7b3e #656 - add check_access to remaining handlers
add d7739e3c Adding comment; fixes #773
add c2e1f7d1 Adding comment; fixes #767
add 8b22964a Adding a comment about octet-stream; fixes #714
add 5311b7e4 Adding comment about data display; fixes #711
add 7bd8eafc #656 - add check_access to remaining handlers
add 84e9697e Fix JWT token validation
add 0f5bbd2e Get Tooling members from LDAP instead of a hardcoded list
add cce31032 Forbid mutating navigations to the API and all mutating
cross-site requests
add b4a8b06c Adding Cache-Control params; fixes #788
add 66feba62 Adding comments; fixes #718
add bd420896 Validate no CR/LF in http header values
add 3b9ec6c5 Use quarantining for several revision creation methods
add 88b3d6c4 Show quarantine status in the user interface
add a77ac420 Migrate all revision creators to use quarantine
add f424e22c Improve the style of classification badges
add 0e6d4073 Fix compose test badge labels
add 7e92d3d4 Record when votes are resolved
add 4f29661c Update dependencies
add dd357f33 Add vulnerability exceptions section to CONTRIBUTING.md
add 88df7f74 Add exarch as a dependency
add 93e40f1c Use exarch to extract archives with custom validation
add 0dd29c63 Distinguish admins writing for committees from those writing
generally
add f7a2fe04 Add guidance about the application/json media type
add f0222573 ATR_logo,svg
add 6ffefc37 ATR certified badge
add 1efa36a9 FIs and rename atr logo and badge
new 2a54d67d Prefix some unused variables
new 6872f82e Add taint tracking types to API routes
new 34b19fed Latest changes - note: broken
This update added new revisions after undoing existing revisions.
That is to say, some revisions that were in the old version of the
branch are not in the new version. This situation occurs
when a user --force pushes a change and generates a repository
containing something like this:
* -- * -- B -- O -- O -- O (3c783f43)
\
N -- N -- N refs/heads/taint_tracking_types (34b19fed)
You should already have received notification emails for all of the O
revisions, and so the following emails describe only the N revisions
from the common base, B.
Any revisions marked "omit" are not gone; other references still
refer to them. Any revisions marked "discard" are gone forever.
The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
.pre-commit-config.yaml | 6 +-
CONTRIBUTING.md | 9 +
atr/admin/__init__.py | 6 +-
atr/api/__init__.py | 15 +-
atr/config.py | 1 +
atr/datasources/apache.py | 16 +-
atr/form.py | 1 +
atr/get/download.py | 6 +-
atr/get/result.py | 1 +
atr/get/root.py | 1 +
atr/get/test.py | 5 +-
atr/ldap.py | 34 +++
atr/paths.py | 4 +
atr/post/draft.py | 21 +-
atr/post/revisions.py | 8 +-
atr/post/tokens.py | 4 +-
atr/post/upload.py | 23 +-
atr/server.py | 17 ++
atr/shared/web.py | 8 +
atr/ssh.py | 22 +-
atr/static/css/atr.css | 23 ++
atr/static/svg/atr_certified_badge.svg | 133 ++++++++++++
atr/static/svg/atr_logo.svg | 51 +++++
atr/storage/__init__.py | 62 ++++--
atr/storage/writers/keys.py | 4 +-
atr/storage/writers/release.py | 42 ++--
atr/storage/writers/revision.py | 114 ----------
atr/storage/writers/tokens.py | 5 +-
atr/storage/writers/vote.py | 12 +-
atr/tasks/quarantine.py | 50 +++--
atr/tasks/sbom.py | 4 +-
atr/tasks/svn.py | 8 +-
atr/templates/check-selected-path-table.html | 10 +-
atr/templates/check-selected.html | 26 +++
atr/web.py | 3 +
playwright/test.py | 21 +-
pyproject.toml | 1 +
requirements-for-pip-audit.txt | 34 +--
scripts/keys_import.py | 4 +-
tests/e2e/announce/conftest.py | 8 +-
tests/e2e/compose/test_get.py | 6 +-
tests/e2e/helpers.py | 14 ++
tests/e2e/sbom/conftest.py | 7 +-
tests/e2e/vote/conftest.py | 8 +-
tests/unit/test_create_revision.py | 8 +-
tests/unit/test_quarantine_task.py | 21 +-
uv.lock | 306 +++++++++++++++------------
47 files changed, 793 insertions(+), 400 deletions(-)
create mode 100644 atr/static/svg/atr_certified_badge.svg
create mode 100644 atr/static/svg/atr_logo.svg
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
