GitHub user ppkarwasz created a discussion: Tag cleanup and protection
Hi all, In PR #4095 I will also be introducing protection on our tags. Our tags are currently unprotected. The GitHub feature previously used for this (Protected Tags) was sunset in 2024, and we now need to use Rulesets instead. Before doing that, I'd like to clean up the tags so our users only see the relevant ones: specifically, remove all `log4j-*` tags and keep only the `rel/*` tags. Since our release process no longer relies on tags to mark release candidates (they are now referenced by SHA-1), we could also go ahead and protect all tags. Before the cleanup, however, I'd like to fix a few inconsistencies that have crept in over the years: 1. The earliest pre-releases, 2.0-alpha1 through 2.0-beta9, have no `rel/*` tag. These predate the convention. 2. The following releases have lightweight tags instead of annotated ones: 2.22.1, 2.23.0, all 2.24.x releases, 3.0.0-beta2 and 3.0.0-beta3. These appear to all be releases I cut, though not all of them. 3. The following releases have unsigned tags: all 2.21.x and 2.25.x releases. I'd like to address all three before enabling tag protection. What do you think? Piotr GitHub link: https://github.com/apache/logging-log4j2/discussions/4096 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
