Google Git
Sign in
apache/tooling-trusted-releases/HEAD
  1. 45b0724 Clarify the purpose of the function to prevent confusing UI display by Sean B. Palmer · 3 hours ago altera main
  2. a64f137 Remove remnants of access checking from the POST decorator by Sean B. Palmer · 4 hours ago
  3. c067a4d Tighten types for phase fields and add tests by Sean B. Palmer · 5 hours ago sbp
  4. 2ce0384 Remove an unused function related to GnuPG by Sean B. Palmer · 7 hours ago
  5. a2d0cb5 Add nbf to fields checked during JWT verification by Sean B. Palmer · 7 hours ago
  6. f909ff8 Document the lack of adaptive response to authentication failures by Sean B. Palmer · 7 hours ago
  7. 9a4c0a9 Add documentation about business logic by Sean B. Palmer · 7 hours ago
  8. fd82f48 Add a new branch to CI checks by Sean B. Palmer · 8 hours ago
  9. 7598fe3 Improve error treatment when fetching mailing list threads by Sean B. Palmer · 8 hours ago
  10. ca9d146 Update dependencies by Sean B. Palmer · 10 hours ago
  11. 0abf572 Improve the documentation for moving files by Sean B. Palmer · 10 hours ago
  12. 8fe9234 #510 - any PMC member can delete a project by Alastair McFarlane · 30 hours ago arm
  13. 8d9c806 Classify npm archives as binaries based on archive content by Sean B. Palmer · 28 hours ago
  14. a75f5bb Check that ssh connections are still active by Sean B. Palmer · 31 hours ago
  15. 840fd7a #997 and #1022 - rework extraction and quarantine logic to rely on exarch by Alastair McFarlane · 2 days ago
  16. 8243af4 #1152 - replace test JWT generation with PAT-bound JWTs by Alastair McFarlane · 33 hours ago
  17. d1a81c3 Skip more false positives in vote tabulation by Sean B. Palmer · 32 hours ago
  18. 8741aec Update audience values in jwtoken.py by Dave Fisher · 32 hours ago
  19. f820f92 Improve the source artifact check UI and add fallbacks by Sean B. Palmer · 33 hours ago
  20. cd70c0e #1117 - document visibility of vote tabulation by Alastair McFarlane · 34 hours ago
  21. 65b527f #1056 - audit guidance for public openapi docs by Alastair McFarlane · 34 hours ago
  22. 9505b00 #1050 - audit guidance for token type discrimination by Alastair McFarlane · 2 days ago
  23. 2de8e6b #1041 - switch to committee admin instead of member for key regeneration by Alastair McFarlane · 2 days ago
  24. d9e47ba #1064: Add audit guidance by Alastair McFarlane · 2 days ago
  25. 5307d35 #1074 - HTTP timeouts for external calls by Alastair McFarlane · 2 days ago
  26. 97e8983 Improve error messages on safe type validation failures by Sean B. Palmer · 2 days ago
  27. 5884610 Show a warning when there are insufficient binding votes by Sean B. Palmer · 2 days ago
  28. 1f9abe5 Invalidate SSH keys; fixes #737 by Andrew K. Musselman · 4 weeks ago
  29. 7f4ef1e #1039: Add a couple of check_access calls and some audit guidance by Alastair McFarlane · 2 days ago
  30. 45d6211 Only show exception detail in dev environments (#1170) by Dave Fisher · 2 days ago
  31. 3ef0f81 Project filter use textContent and not innerHTML plus substring match (#1174) by Dave Fisher · 2 days ago
  32. b7b3f5c Check that at least one source archive is present in releases by Sean B. Palmer · 2 days ago
  33. 6c75f0c Make Dependabot update uv lockfiles only, to work around a bug by Sean B. Palmer · 2 days ago
  34. e1e5a7d Use explicit ranges to test Dependabot behaviour by Sean B. Palmer · 2 days ago
  35. 4217e4d #1027 - remove deprecated admin.post decorator by Alastair McFarlane · 2 days ago
  36. 3d13927 Align Dependabot with our update strategy, and update dependencies by Sean B. Palmer · 2 days ago
  37. c18dbfd Add impersonation banner so users know they're browsing as someone else by Alastair McFarlane · 2 days ago
  38. 3919893 #987 - type-level validation for ASFUIDs by Alastair McFarlane · 3 days ago
  39. dfd1d72 #1053 - Move tasks/list endpoint to /admin/tasks/list, shares permissions with UI view of tasks. by Alastair McFarlane · 3 days ago
  40. 2728e59 #1118 - add commentary around extracting UID from token before verification by Alastair McFarlane · 3 days ago
  41. f32b32a #1118 - add commentary around extracting UID from token before verification by Alastair McFarlane · 3 days ago
  42. e246949 #986 - protocol validation for URLs before rendering by Alastair McFarlane · 3 days ago
  43. b737fcd Do not log the email message body (#1168) by Dave Fisher · 3 days ago
  44. f1fdb58 Add an incubation disclaimer to announcement messages as appropriate by Sean B. Palmer · 3 days ago
  45. 32484b0 Fix errors in the UI related to second round votes for podlings by Sean B. Palmer · 3 days ago
  46. aa242d5 Remove UI access checks for POST routes by Sean B. Palmer · 3 days ago
  47. beb7e67 Do not allow first round podling votes to be sent to private lists by Sean B. Palmer · 3 days ago
  48. 13f1549 #776 - max length 100k for email bodies by Alastair McFarlane · 3 days ago
  49. 6efb1c7 #631 - add nav pinning to preferences by Alastair McFarlane · 3 days ago
  50. 6b7bf3f #1058 - purge expired workflowssh keys by Alastair McFarlane · 4 days ago
  51. bd55100 #776 - Add 50k limit to vote comment and add nav link to jump back to form by Alastair McFarlane · 4 days ago
  52. 3400ed8 #1158 - move error handling to database by Alastair McFarlane · 4 days ago
  53. 938784d Publish podling release files to the correct downloads path by Sean B. Palmer · 3 days ago
  54. 9fff339 Add regression tests for a bug in second round vote tabulation by Sean B. Palmer · 3 days ago
  55. c1cc643 Make votes binding on incubator membership in second round tabulation by Sean B. Palmer · 3 days ago
  56. 238b141 Mention the use of SSH keys for rsync upload in the documentation by Sean B. Palmer · 3 days ago
  57. 8d75506 Adding ssh specifics to docs; fixes #1024 by Andrew K. Musselman · 4 days ago
  58. b62b854 Add auth audit logging section to documentation by Alastair McFarlane · 4 days ago
  59. 6d91a88 Adding audit_guidance for redirect; fixes #995 by Andrew K. Musselman · 4 days ago
  60. bfb3514 Remove a warning about second round recipient selection being incomplete by Sean B. Palmer · 4 days ago
  61. 5326ecb Make announcement e2e tests more stable by Sean B. Palmer · 4 days ago
  62. 69b7ed3 Update dependencies by Sean B. Palmer · 4 days ago
  63. a23ed43 Send second round vote messages to the specified address by Sean B. Palmer · 4 days ago
  64. e723947 Skip recipient validation for second rounds by Sean B. Palmer · 4 days ago
  65. f9c8db2 Add UI for the second round vote recipient choice by Sean B. Palmer · 4 days ago
  66. a1807c2 Add supporting code for custom second round vote destinations by Sean B. Palmer · 4 days ago
  67. f2672f1 #1002 - Validate vote duration (and fix API recipient handling) by Alastair McFarlane · 5 days ago
  68. 025799b #996 - Validate thread ID before using it by Alastair McFarlane · 5 days ago
  69. 1d9c31f Some additional auth audit logging by Alastair McFarlane · 5 days ago
  70. f27df71 Add support for scoped signature provenance searches by Sean B. Palmer · 7 days ago
  71. 5fd0f2f Improve and fix some bugs in the signature provenance endpoint by Sean B. Palmer · 7 days ago
  72. 43303b7 Query the database directly for user preferences by Sean B. Palmer · 7 days ago
  73. 0751389 Fix a storage interface bug exposed by a failing e2e test by Sean B. Palmer · 7 days ago
  74. 513893d Set an upper limit to rsync process execution time by Sean B. Palmer · 7 days ago
  75. e3fbdb6 Add audit guidance about PAT and OAuth sessions being independent by Sean B. Palmer · 7 days ago
  76. a009eab Notify users when an admin deletes their API keys by Sean B. Palmer · 7 days ago
  77. 76816c4 Add audit guidance about PAT deletion immediately affecting JWTs by Sean B. Palmer · 7 days ago
  78. ee5646c #1004 - revoke sessions, PATs and SSH keys when an account is deactivated or banned by Alastair McFarlane · 7 days ago
  79. adb9c26 #983 - record distribution actions in storage audit log by Alastair McFarlane · 7 days ago
  80. 486757b #1003 - add rate limiting to SSH connections by Alastair McFarlane · 9 days ago
  81. 890a9a6 Use async.gather for LDAP checks to save some time by Alastair McFarlane · 7 days ago
  82. a8f5997 LDAP parsing from pubsub, update subscription URL by Alastair McFarlane · 7 days ago
  83. ab46fd0 #984 - update SSH host key to ED25519 by Alastair McFarlane · 8 days ago
  84. eb90f3e #982 - timeout for git clones by Alastair McFarlane · 8 days ago
  85. b3dbd61 Store session data in the server by Sean B. Palmer · 8 days ago
  86. 1a59f3a Use the debug print format that is used throughout osv.py (#1148) by Dave Fisher · 8 days ago
  87. 4787649 #985 - limit key strength of new PGP keys by Alastair McFarlane · 8 days ago
  88. 79ed3f9 #981 - return accumulator variable instead of 0 when extracting archives by Alastair McFarlane · 9 days ago
  89. 7e55cfc Remove extraneous auth_username by Alastair McFarlane · 9 days ago
  90. b0cdb6b #1063 - add timeout to message thread fetches by Alastair McFarlane · 9 days ago
  91. 302f571 #1061 - add timeout to OSV fetches by Alastair McFarlane · 9 days ago
  92. 9aee135 Adding docs for cascading; fixes #517 (#869) by Andrew Musselman · 9 days ago
  93. 56a8188 #1045 - Add belt-and-braces check for task ID owned by asserted user. by Alastair McFarlane · 9 days ago
  94. 30d1a73 #1065 - add limit to data returned when polling for task completion by Alastair McFarlane · 9 days ago
  95. b8fb515 #1114, #1115, #1036, #957 - Add auth audit log and log success, failure, events. by Alastair McFarlane · 9 days ago
  96. e44496e #631 - Add user preferences and colour settings for colour blindness mode by Alastair McFarlane · 10 days ago
  97. 22fb628 Use Alpine edge in the Bootstrap build, and remove Mermaid by Sean B. Palmer · 9 days ago
  98. a9ef14a Adding mermaid support; fixes #891 by Andrew K. Musselman · 10 days ago
  99. 98100f0 jwt expires after 30 minutes #1111 by Dave Fisher · 10 days ago
  100. 9fa85cc Fix a problem with e2e admin tests by Sean B. Palmer · 10 days ago