New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Create temurin-vdr-generator repo #50
Conversation
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
to which project shall this repo belong? temurin? |
topics+: [ | ||
"secure-dev" | ||
], | ||
branch_protection_rules: [ |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
also not sure if this is set by default CC @netomi
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
there is no default branch protection rule setup by default.
For the vert.x project we did something like that:
https://github.com/eclipse-vertx/.eclipsefdn/blob/main/otterdog/eclipse-vertx.jsonnet#L18
Thanks for this! looking forward to moving the stuff in https://github.com/Scanteianu/openjdk-cve-parser/pull/2/files here |
Signed-off-by: Thomas Neidhart <thomas.neidhart@eclipse-foundation.org>
/validate |
This is your friendly self-service bot. Diff for c7d9b9bOrganization adoptium[id=adoptium]
there have been 4 validation infos, enable verbose output with '-v' to to display them.
! repository[name="aqa-tests"] {
! topics = "['hacktoberfest', 'openjdk-tests', 'tests']" -> "['openjdk-tests', 'tests']"
! }
+ add repository[name="temurin-vdr-generator"] {
+ allow_auto_merge = true
+ allow_forking = true
+ allow_merge_commit = false
+ allow_rebase_merge = true
+ allow_squash_merge = true
+ allow_update_branch = true
+ archived = false
+ default_branch = "main"
+ delete_branch_on_merge = true
+ dependabot_alerts_enabled = true
+ dependabot_security_updates_enabled = true
+ description = "Scripts for generating Vulnerability Disclosure Reports"
+ gh_pages_build_type = "disabled"
+ has_discussions = false
+ has_issues = true
+ has_projects = true
+ has_wiki = true
+ homepage = null
+ is_template = false
+ merge_commit_message = "PR_TITLE"
+ merge_commit_title = "MERGE_MESSAGE"
+ name = "temurin-vdr-generator"
+ private = false
+ secret_scanning = "enabled"
+ secret_scanning_push_protection = "enabled"
+ squash_merge_commit_message = "COMMIT_MESSAGES"
+ squash_merge_commit_title = "COMMIT_OR_PR_TITLE"
+ template_repository = null
+ topics = [
+ "secure-dev"
+ ],
+ web_commit_signoff_required = false
+ }
+ add repo_workflow_settings[repository="temurin-vdr-generator"] {
+ actions_can_approve_pull_request_reviews = true
+ enabled = true
+ }
+ add branch_protection_rule[pattern="main", repository="temurin-vdr-generator"] {
+ allows_deletions = false
+ allows_force_pushes = false
+ blocks_creations = false
+ bypass_force_push_allowances = []
+ bypass_pull_request_allowances = []
+ dismisses_stale_reviews = false
+ is_admin_enforced = false
+ lock_allows_fetch_and_merge = false
+ lock_branch = false
+ pattern = "main"
+ require_last_push_approval = false
+ required_approving_review_count = "2"
+ required_status_checks = [
+ "eclipse-eca-validation:eclipsefdn/eca"
+ ],
+ requires_code_owner_reviews = false
+ requires_commit_signatures = false
+ requires_conversation_resolution = false
+ requires_deployments = false
+ requires_linear_history = false
+ requires_pull_request = true
+ requires_status_checks = true
+ requires_strict_status_checks = false
+ restricts_pushes = false
+ restricts_review_dismissals = false
+ }
Plan: 3 to add, 1 to change, 0 to delete. Add a comment |
/check-sync |
This is your friendly self-service bot. The current configuration is in-sync with the live settings. 🚀 |
This is your friendly self-service bot. The following changes have been successfully applied: Organization adoptium[id=adoptium]
there have been 4 validation infos, enable verbose output with '-v' to to display them.
! repository[name="aqa-tests"] {
! topics = "['openjdk-tests', 'tests', 'hacktoberfest']" -> "['openjdk-tests', 'tests']"
! }
+ add repository[name="temurin-vdr-generator"] {
+ allow_auto_merge = true
+ allow_forking = true
+ allow_merge_commit = false
+ allow_rebase_merge = true
+ allow_squash_merge = true
+ allow_update_branch = true
+ archived = false
+ default_branch = "main"
+ delete_branch_on_merge = true
+ dependabot_alerts_enabled = true
+ dependabot_security_updates_enabled = true
+ description = "Scripts for generating Vulnerability Disclosure Reports"
+ gh_pages_build_type = "disabled"
+ has_discussions = false
+ has_issues = true
+ has_projects = true
+ has_wiki = true
+ homepage = null
+ is_template = false
+ merge_commit_message = "PR_TITLE"
+ merge_commit_title = "MERGE_MESSAGE"
+ name = "temurin-vdr-generator"
+ private = false
+ secret_scanning = "enabled"
+ secret_scanning_push_protection = "enabled"
+ squash_merge_commit_message = "COMMIT_MESSAGES"
+ squash_merge_commit_title = "COMMIT_OR_PR_TITLE"
+ template_repository = null
+ topics = [
+ "secure-dev"
+ ],
+ web_commit_signoff_required = false
+ }
+ add repo_workflow_settings[repository="temurin-vdr-generator"] {
+ actions_can_approve_pull_request_reviews = true
+ enabled = true
+ }
+ add branch_protection_rule[pattern="main", repository="temurin-vdr-generator"] {
+ allows_deletions = false
+ allows_force_pushes = false
+ blocks_creations = false
+ bypass_force_push_allowances = []
+ bypass_pull_request_allowances = []
+ dismisses_stale_reviews = false
+ is_admin_enforced = false
+ lock_allows_fetch_and_merge = false
+ lock_branch = false
+ pattern = "main"
+ require_last_push_approval = false
+ required_approving_review_count = "2"
+ required_status_checks = [
+ "eclipse-eca-validation:eclipsefdn/eca"
+ ],
+ requires_code_owner_reviews = false
+ requires_commit_signatures = false
+ requires_conversation_resolution = false
+ requires_deployments = false
+ requires_linear_history = false
+ requires_pull_request = true
+ requires_status_checks = true
+ requires_strict_status_checks = false
+ restricts_pushes = false
+ restricts_review_dismissals = false
+ }
Applying changes:
Done.
Executed plan: 3 added, 1 changed, 0 deleted. |
permissions are setup. |
A new repo to contain the Vulnerability Disclosure Report generation scripts (related: adoptium/temurin#1 and adoptium/adoptium#209)