commits  

Messages by Thread

• (tooling-trusted-releases) branch main updated: Fixes #486 sbp
• (tooling-trusted-releases) branch improve-documentation-486 deleted (was 3d6ff6b) sbp
• (tooling-trusted-releases) branch improve-documentation-486 updated (559986e -> 3d6ff6b) akm
• (tooling-actions) branch main updated: Use the new tagging feature to download only maven files via rsync arm
• (tooling-trusted-releases) branch main updated (98d99a5 -> 3299763) arm
• (tooling-trusted-releases) branch atr_tagging deleted (was 3dce55d) arm
• (tooling-trusted-releases) branch atr_tagging updated (d3fba2b -> 3dce55d) arm
• (tooling-trusted-releases) branch atr_tagging updated (14de809 -> d3fba2b) arm
• (tooling-trusted-releases) branch atr_tagging updated (fca23a4 -> 14de809) arm
• (tooling-releases-client) branch dependabot/github_actions/actions/upload-artifact-6.0.0 created (now e7d291d) github-bot
• (tooling-releases-client) branch dependabot/github_actions/astral-sh/setup-uv-7.2.0 created (now 4c3b0d8) github-bot
• (tooling-releases-client) branch dependabot/github_actions/actions/checkout-6.0.2 created (now 718ea35) github-bot
• (tooling-trusted-releases) branch atr_tagging updated (95ed430 -> fca23a4) arm
• (tooling-trusted-releases) branch atr_tagging updated (9517a6e -> 95ed430) arm
• (tooling-trusted-releases) branch main updated: Configure session cookie security attributes (#574) wave
• (tooling-trusted-releases) branch atr_tagging updated (d1e357f -> 9517a6e) arm
• (tooling-trusted-releases) branch main updated: Show tracebacks in development environments sbp
• (tooling-trusted-releases) branch storage-interface-error-messages updated (81381de -> b097679) wave
• (tooling-trusted-releases) branch storage-interface-error-messages updated (b097679 -> 972ed31) wave
• (tooling-trusted-releases) branch session-cookie-security deleted (was 67a19c5) wave
• (tooling-trusted-releases) branch main updated: Restore the ASFQuart default setting for SameSite sbp
• (tooling-trusted-releases) branch main updated (1f62359 -> c7a5d9d) arm
• (tooling-trusted-releases) branch no-traceback-on-error-html deleted (was 2a722f8) wave
• (tooling-trusted-releases) branch main updated: No traceback on error html page (#578) wave
• (tooling-trusted-releases) branch no-traceback-on-error-html updated (622fe3b -> 2a722f8) wave
• (tooling-trusted-releases) branch storage-interface-error-messages updated (c412118 -> 81381de) wave
• (tooling-trusted-releases) branch atr_tagging updated (65cc07f -> d1e357f) arm
• (tooling-trusted-releases) branch storage-interface-error-messages updated (4cb9b74 -> c412118) wave
• (tooling-trusted-releases) branch main updated (8818629 -> c7fac9f) arm
• (tooling-trusted-releases) branch main updated: Send email through the storage interface and add audit logging sbp
• (tooling-trusted-releases) branch atr_tagging updated: #475 - Remove endpoint as not needed for distribution any more arm
• (tooling-trusted-releases) branch atr_tagging updated (1b36fbd -> 35b3d99) arm
  • (tooling-trusted-releases) 03/03: #476 - allow rsync to specify a tag as part of the URL arm
  • (tooling-trusted-releases) 02/03: #475 - Add endpoint to get tagging spec for a release arm
  • (tooling-trusted-releases) 01/03: #475 - add tagging field to release policy arm
• (tooling-trusted-releases) branch main updated: Add some e2e token tests sbp
• (tooling-trusted-releases) branch main updated: Notify users on authentication credentials change sbp
• (tooling-trusted-releases) branch notify-users-on-pat deleted (was 419a162) sbp
• (tooling-trusted-releases) branch main updated: #549 and #471 - implement structured logging when running not in debug mode arm
• (tooling-trusted-releases) branch atr_tagging updated (03dcb51 -> 1b36fbd) arm
  • (tooling-trusted-releases) 02/02: #475 - Add endpoint to get tagging spec for a release arm
  • (tooling-trusted-releases) 01/02: #475 - add tagging field to release policy arm
• (tooling-trusted-releases) branch no-traceback-on-error-html created (now 622fe3b) wave
  • (tooling-trusted-releases) 01/01: No traceback on error html page wave
• (tooling-trusted-releases) branch notify-users-on-pat updated (3d9fb43 -> 419a162) wave
• (tooling-trusted-releases) branch improve-documentation-486 created (now 559986e) akm
  • (tooling-trusted-releases) 01/01: Fixes #486 akm
• (tooling-trusted-releases) branch storage-interface-error-messages created (now 4cb9b74) wave
  • (tooling-trusted-releases) 01/01: Update storage interface error messages wave
• (tooling-trusted-releases) branch security-docs-555 created (now a780a74) akm
  • (tooling-trusted-releases) 01/01: Fixes #555 akm
• (tooling-trusted-releases) branch session-cookie-security created (now 67a19c5) wave
  • (tooling-trusted-releases) 01/01: Configure session cookie security attributes wave
• (tooling-trusted-releases) branch notify-users-on-pat created (now 3d9fb43) wave
  • (tooling-trusted-releases) 01/01: Notify users on authentication credentials change wave
• (tooling-trusted-releases) branch main updated: Add too large a payload handler (#572) wave
• (tooling-trusted-releases) branch 413-errors deleted (was 0197394) wave
• (tooling-trusted-releases) branch main updated (3af4e0e -> bd4462e) sbp
• (tooling-trusted-releases) branch main updated (9ff6af3 -> 3af4e0e) sbp
• (tooling-trusted-releases) branch 413-errors updated: Do not produce extra stacktraces wave
• (tooling-trusted-releases) branch main updated: Use sentence case in headings sbp
• (tooling-trusted-releases) branch 413-errors updated: Correct message wave
• (tooling-trusted-releases) branch 413-errors created (now 48f279b) wave
  • (tooling-trusted-releases) 01/01: Too large a payload handler wave
• (tooling-trusted-releases) branch main updated: Fix unparenthesized subexpressions sbp
• (tooling-trusted-releases) branch main updated: Run pre-commit hooks on pushes to the primary development branches sbp
• (tooling-trusted-releases) branch main updated: Downgrade Biome to allow lints to run in CI sbp
• (tooling-trusted-releases) branch main updated: Fix Markdown issues detected by linting sbp
• (tooling-trusted-releases) branch table-formatting-fix deleted (was 168c15e) sbp
• (tooling-trusted-releases) branch main updated: Removing tables, linted sbp
• (tooling-trusted-releases) branch table-formatting-fix created (now 168c15e) akm
  • (tooling-trusted-releases) 01/01: Removing tables, linted akm
• (tooling-trusted-releases) branch main updated: Make the use of configuration more efficient in the server module sbp
• (tooling-trusted-releases) branch atr_tagging updated: #475 - Add endpoint to get tagging spec for a release arm
• (tooling-trusted-releases) branch atr_tagging created (now 999e4e2) arm
  • (tooling-trusted-releases) 01/01: #475 - add tagging field to release policy arm
• (tooling-actions) branch main updated: Rename njord store to make it more obvious deployment came from ATR arm
• (tooling-actions) branch main updated: Wait before recording the distribution to give time to propagate arm
• (tooling-actions) branch main updated (0fafd8e -> 0cce9f3) arm
  • (tooling-actions) 01/01: Pull correct secrets into env and fix staging arg arm
• (tooling-actions) branch main updated: Pull correct secrets into env arm
• (tooling-actions) branch main updated: Try to update URL in pom? arm
• (tooling-actions) branch main updated: Rename run for stg arm
• (tooling-trusted-releases) branch main updated (9af8b4c -> 44cdc6b) arm
  • (tooling-trusted-releases) 01/01: #556 - narrow exception handling and fail on specific errors arm
• (tooling-trusted-releases) branch main updated: #556 - narrow exception handling and fail on specific errors arm
• (tooling-actions) branch main updated (1a0b9de -> 64485ed) arm
  • (tooling-actions) 01/01: Enable automatic publishing arm
• (tooling-actions) branch main updated: Enable automatic publishing arm
• (tooling-trusted-releases) branch hsts-header deleted (was d97220a) wave
• (tooling-trusted-releases) branch main updated: Add HSTS response header (#566) wave
• (tooling-trusted-releases) branch main updated (587307b -> 5b98a81) wave
• (tooling-trusted-releases) branch hsts-header created (now d97220a) wave
  • (tooling-trusted-releases) 01/01: Add HSTS response header wave
• (tooling-trusted-releases) branch main updated: Remove PMC table and submission instructions wave
• (tooling-trusted-releases) branch test-pr-template deleted (was 3cfb3ac) wave
• (tooling-trusted-releases) branch test-pr-template created (now 3cfb3ac) wave
  • (tooling-trusted-releases) 01/01: Test PR template wave
• (tooling-trusted-releases) branch main updated: Create pull request template for contributions wave
• (tooling-trusted-releases) branch main updated: Update docs #557 (#565) wave
• (tooling-trusted-releases) branch clarify-instructions-557 deleted (was 698f699) wave
• (tooling-trusted-releases) branch clarify-instructions-557 updated: Fixes #557 akm
• (tooling-trusted-releases) branch clarify-instructions-557 created (now 175660d) akm
• (tooling-trusted-releases) branch thread-count deleted (was 8f58cef) sbp
• (tooling-trusted-releases) branch main updated: Thread count sbp
• (tooling-trusted-releases) branch main updated: Fix SSH host key permissions if necessary after creation sbp
• (tooling-actions) branch main updated: Update script for staging artifacts, set up Central deploy arm
• (tooling-trusted-releases) branch thread-count created (now 8f58cef) wave
  • (tooling-trusted-releases) 01/01: Thread count wave
• (tooling-trusted-releases) branch main updated: Prevent enumeration sbp
• (tooling-trusted-releases) branch prevent-enumeration deleted (was 198e6b7) sbp
• (tooling-trusted-releases) branch prevent-enumeration created (now 198e6b7) wave
  • (tooling-trusted-releases) 01/01: Prevent enumeration wave
• (tooling-trusted-releases) branch main updated: Disallow writing to release files after staging sbp
• (tooling-trusted-releases) branch main updated: Add a function to change file permissions recursively sbp
• (tooling-trusted-releases) branch main updated: Ensure that the permissions of secret files are correct sbp
• (tooling-trusted-releases) branch main updated: Add a warning about the risks of using mkcert (from @sebbASF) sbp
• (tooling-trusted-releases) branch main updated: Add a lint to check imports in the models sbp
• (tooling-trusted-releases) branch copy-sbom-models deleted (was 323c53d) sbp
• (tooling-trusted-releases) branch main updated: Copy SBOM models to remove interdependencies sbp
• (tooling-trusted-releases) branch copy-sbom-models created (now 323c53d) sbp
  • (tooling-trusted-releases) 01/01: Copy SBOM models to remove interdependencies sbp
• (tooling-trusted-releases) branch main updated: Require subject template hashes only from forms and not from the API sbp
• (tooling-trusted-releases) branch main updated (3287b50 -> 6e564c9) sbp
• (tooling-trusted-releases) branch dependabot/github_actions/astral-sh/setup-uv-7.2.0 deleted (was 0750b74) sbp
• (tooling-trusted-releases) branch main updated (72c31ca -> 3287b50) sbp
• (tooling-trusted-releases) branch dependabot/github_actions/biomejs/setup-biome-2.7.0 deleted (was a51b5d2) sbp
• (tooling-trusted-releases) branch main updated: Split failed and in-progress task results, format error message better arm
• (tooling-trusted-releases) branch maven_check_artifacts deleted (was d39011a) arm
• (tooling-trusted-releases) branch main updated: Make Maven check use the CDN URLs instead of the search.maven api arm
• (tooling-trusted-releases) branch maven_check_artifacts updated (35cb9c9 -> d39011a) arm
  • (tooling-trusted-releases) 01/01: Make Maven check use the CDN URLs instead of the search.maven api arm
• (tooling-trusted-releases) branch maven_check_artifacts updated (6bfe896 -> 35cb9c9) arm
  • (tooling-trusted-releases) 01/01: Make Maven check use the CDN URLs instead of the search.maven api arm
• (tooling-trusted-releases) branch dependabot/github_actions/astral-sh/setup-uv-7.2.0 created (now 0750b74) github-bot
• (tooling-trusted-releases) branch dependabot/github_actions/biomejs/setup-biome-2.7.0 created (now a51b5d2) github-bot
• (tooling-trusted-releases) branch main updated: Add a migration to use a temporary state subdirectory sbp
• (tooling-trusted-releases) branch main updated: Add a migration to use a subversion state subdirectory sbp
• (tooling-trusted-releases) branch main updated: Add a migration to use a generated secrets state subdirectory sbp
• (tooling-trusted-releases) branch main updated: Create local certificates automatically if they do not exist sbp
• (tooling-trusted-releases) branch main updated (691b986 -> 4388deb) sbp
• (tooling-trusted-releases) branch main updated (3096084 -> 691b986) sbp
• (tooling-trusted-releases) branch main updated (f38dac1 -> 3096084) sbp
• (tooling-trusted-releases) branch main updated: Add a migration to use a curated secrets state subdirectory sbp
• (tooling-trusted-releases) branch main updated: Fix an error in the e2e tests documentation sbp
• (tooling-trusted-releases) branch main updated: Do not attempt to manage Hypercorn logs from the ATR server sbp
• (tooling-trusted-releases) branch maven_check_artifacts created (now 6bfe896) arm
  • (tooling-trusted-releases) 01/01: Make Maven check use the web URLs instead of the search.maven api arm
• (tooling-trusted-releases) branch main updated: Render pending and failed distribution tasks for non-finish releases arm
• (tooling-actions) branch main updated (6f73530 -> a8e63ef) arm
  • (tooling-actions) 01/01: Make sure validation error causes a failure arm
• (tooling-actions) branch main updated: Make sure validation error causes a failure arm
• (tooling-actions) branch main updated: Handle validation errors in failure step arm
• (tooling-trusted-releases) branch main updated (0cc6d63 -> bfde376) sbp
• (tooling-trusted-releases) branch main updated: Fix some problems with looking up secret configuration values sbp
  • (tooling-trusted-releases) branch main updated: Fix some problems with looking up secret configuration values sbp
• (tooling-trusted-releases) branch main updated: Add the runtime state directory to the list of directories to create sbp
• (tooling-trusted-releases) branch main updated: Document how to debug e2e test failures sbp
• (tooling-trusted-releases) branch main updated: Add a migration to use a logs state directory sbp
• (tooling-releases-client) branch main updated: Revise README for clarifying TUI sbp
• (tooling-actions) branch main updated: Update njord plugin arm
• (tooling-actions) branch main updated (e89f471 -> 3b2b16e) arm
  • (tooling-actions) 01/01: Record status properly in ATR arm
• (tooling-actions) branch main updated (3e8cf6d -> e89f471) arm
  • (tooling-actions) 01/01: Record status properly in ATR arm
• (tooling-actions) branch main updated: Record status properly in ATR arm
• (tooling-actions) branch main updated (afcf3e4 -> 2aff89d) arm
  • (tooling-actions) 01/01: Set tag in POM arm
• (tooling-actions) branch main updated: Set tag in POM arm
• (tooling-actions) branch main updated: Move options to pom arm
• (tooling-actions) branch main updated: Try setting all the settings the hard way arm
• (tooling-actions) branch main updated: Try adding CLI options to validate arm
• (tooling-trusted-releases) branch main updated: Remove hardcoded tooling committee wave
• (tooling-trusted-releases) branch main updated: Add issuer and audience to JWTs sbp
• (tooling-trusted-releases) branch dependabot/uv/pyasn1-0.6.2 deleted (was 9dc25d3) github-bot
• (tooling-trusted-releases) branch main updated: Update dependencies due to CVE-2026-23490 sbp
• (tooling-trusted-releases) branch main updated: Manage the server secret key using ASFQuart sbp
• (tooling-trusted-releases) branch dependabot/uv/pyasn1-0.6.2 created (now 9dc25d3) github-bot
• (tooling-trusted-releases) branch main updated: Remove the ability to configure CSRF protection sbp
• (tooling-trusted-releases) branch main updated: Remove unused code in a comment sbp
• (tooling-trusted-releases) branch main updated: Increase the entropy of the jti field in JWTs sbp
• (tooling-trusted-releases) branch dependabot/uv/pynacl-1.6.2 deleted (was 9ff47da) github-bot
• (tooling-trusted-releases) branch main updated (26ee9d1 -> 85bc177) sbp
  • (tooling-trusted-releases) 01/01: Remove the dependency on PyNaCl due to CVE-2025-69277 sbp
• (tooling-trusted-releases) branch dependabot/uv/pynacl-1.6.2 created (now 9ff47da) github-bot
• (tooling-trusted-releases) branch main updated: Remove the dependency on PyNaCl due to CVE-2025-69277 sbp
• (tooling-trusted-releases) branch main updated: Migrate state files with extensive checks sbp
• (tooling-trusted-releases) branch safe-migrate-path deleted (was 5d5436f) sbp
• (tooling-actions) branch main updated: Support no side files arm
• (tooling-trusted-releases) branch safe-migrate-path updated (571d87c -> 5d5436f) sbp
• (tooling-actions) branch main updated: Make sure the env var gets used arm
• (tooling-actions) branch main updated: Print files after writing arm
• (tooling-actions) branch main updated: Change working directory arm
• (tooling-actions) branch main updated (7b2426d -> 826e918) arm
  • (tooling-actions) 01/01: Change expected repo layout - jar and pom arm
• (tooling-trusted-releases) branch safe-migrate-path created (now 571d87c) sbp
  • (tooling-trusted-releases) 01/01: Migrate state files with extensive checks sbp
• (tooling-actions) branch main updated (5f26520 -> 7b2426d) arm
  • (tooling-actions) 01/01: Change expected repo layout - jar and pom arm
• (tooling-actions) branch main updated (1398d00 -> 5f26520) arm

• Earlier messages
• Later messages