sbp commented on issue #242: URL: https://github.com/apache/tooling-trusted-releases/issues/242#issuecomment-3543757008
Tooling discussed this today and we seem to agree that this is a good approach. We discussed automatically expiring RM roles after a certain number of releases not being performed by a given RM, or a certain time period elapsing. This could be configurable per project with sensible defaults and an absolute maximum, etc. We could allow `KEYS` files to be selected from. We could have an upper limit on the concurrent number of RMs. We could either do an automated survey to estimate the current number of RMs, or ask projects directly, or both. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
