Google Git
Sign in
apache/tooling-trusted-releases/HEAD
  1. e6463a0 Render templates synchronously by Sean B. Palmer · 4 hours ago main
  2. 1105ff5 Adjust topnav menu if ALLOW_TESTS by Dave Fisher · 5 hours ago
  3. f819673 #763 - Convert to defusedxml by Alastair McFarlane · 31 hours ago
  4. 67efe11 Add an admin route to invalidate all JWTs by rotating the signing key by Sean B. Palmer · 23 hours ago
  5. a2b82c0 Document code policies by Sean B. Palmer · 27 hours ago
  6. 63a6144 Fix parentheses by Sean B. Palmer · 28 hours ago
  7. 31569fe Add a script to fix function ordering in common locations by Sean B. Palmer · 28 hours ago
  8. 3aa22ff Omit hashes from PAT records by Sean B. Palmer · 28 hours ago
  9. 8c3875c Add a note about widening types to check with exarch by Sean B. Palmer · 28 hours ago
  10. 1b8ec69 Add start_tls to SMTP connection by Dave Fisher · 28 hours ago
  11. dd47ab5 New ATR logo topnav treatment by Dave Fisher · 28 hours ago
  12. 192c988 Use a strict structured subset of LDAP results only by Sean B. Palmer · 28 hours ago
  13. 57e1065 Use session asf_uid when adding ssh key and pat by Dave Fisher · 2 days ago
  14. 1efa36a FIs and rename atr logo and badge by Dave Fisher · 2 days ago
  15. 6ffefc3 ATR certified badge by Dave Fisher · 2 days ago
  16. f022257 ATR_logo,svg by Dave Fisher · 2 days ago
  17. f7a2fe0 Add guidance about the application/json media type by Sean B. Palmer · 2 days ago
  18. 0dd29c6 Distinguish admins writing for committees from those writing generally by Sean B. Palmer · 2 days ago
  19. 93e40f1 Use exarch to extract archives with custom validation by Sean B. Palmer · 2 days ago
  20. 88df7f7 Add exarch as a dependency by Sean B. Palmer · 2 days ago
  21. dd357f3 Add vulnerability exceptions section to CONTRIBUTING.md by Dave Fisher · 2 days ago
  22. 4f29661 Update dependencies by Sean B. Palmer · 2 days ago
  23. 7e92d3d Record when votes are resolved by Sean B. Palmer · 2 days ago
  24. 0e6d407 Fix compose test badge labels by Sean B. Palmer · 2 days ago
  25. f424e22 Improve the style of classification badges by Sean B. Palmer · 2 days ago
  26. a77ac42 Migrate all revision creators to use quarantine by Sean B. Palmer · 2 days ago
  27. 88b3d6c Show quarantine status in the user interface by Sean B. Palmer · 2 days ago
  28. 3b9ec6c Use quarantining for several revision creation methods by Sean B. Palmer · 2 days ago
  29. bd42089 Validate no CR/LF in http header values by Dave Fisher · 3 days ago
  30. 66feba6 Adding comments; fixes #718 by Andrew K. Musselman · 4 days ago
  31. b4a8b06 Adding Cache-Control params; fixes #788 by Andrew Musselman · 3 days ago
  32. cce3103 Forbid mutating navigations to the API and all mutating cross-site requests by Dave Fisher · 3 days ago
  33. 0f5bbd2 Get Tooling members from LDAP instead of a hardcoded list by Dave Fisher · 3 days ago
  34. 84e9697 Fix JWT token validation by Alastair McFarlane · 3 days ago
  35. 7bd8eaf #656 - add check_access to remaining handlers by Alastair McFarlane · 3 days ago
  36. 5311b7e Adding comment about data display; fixes #711 by Andrew K. Musselman · 4 days ago
  37. 8b22964 Adding a comment about octet-stream; fixes #714 by Andrew K. Musselman · 4 days ago
  38. c2e1f7d Adding comment; fixes #767 by Andrew K. Musselman · 4 days ago
  39. d7739e3 Adding comment; fixes #773 by Andrew K. Musselman · 4 days ago
  40. fcdad6d Augment manual vote resolution validation by Dave Fisher · 4 days ago
  41. b6d5e96 Restore the trailing slash on the documentation route path by Sean B. Palmer · 4 days ago
  42. f4b7ca0 #344 - instructions on how to upload via GitHub Actions by Alastair McFarlane · 4 days ago
  43. 085e296 Allow wider access to files and check results by Dave Fisher · 4 days ago
  44. 7340df5 Add a method to perform quarantine checks when creating a revision by Sean B. Palmer · 4 days ago
  45. 3799e8e Use two separate functions for the main phases of revision finalisation by Sean B. Palmer · 4 days ago
  46. 83b0343 Make one of the compose tests more reliable by Sean B. Palmer · 4 days ago
  47. 2a7d4ea Remove unnecessary test endpoint by Dave Fisher · 7 days ago
  48. 2f68b21 Add check_access back into routes which require it and remove from GET generally. by Alastair McFarlane · 4 days ago
  49. 690e461 Use experimental CodeQL query suites for actions by Sean B. Palmer · 4 days ago
  50. b0386f7 Remove empty test method added by accident by Alastair McFarlane · 4 days ago
  51. e58a18a Validate vulnerability URLs are http/s. Closes #768 by Alastair McFarlane · 4 days ago
  52. 18d73aa Add failed authentication logging to identified areas. Closes #725 by Alastair McFarlane · 4 days ago
  53. b7eba2f Drop admin privileges (#796) by Dave Fisher · 4 days ago
  54. de57ce1 Change data models to Subset instead of Lax - closes #777 by Alastair McFarlane · 7 days ago
  55. 219d64a OF - fix typo by Dave Fisher · 7 days ago
  56. 1bc9ee1 Proper pagination validation checks by Dave Fisher · 8 days ago
  57. cb5071f Fix auth bypass for admin via exceptions by Dave Fisher · 8 days ago
  58. fa010e3 Fix function ordering by Sean B. Palmer · 8 days ago
  59. d88c4b0 Skip files that use overloads when fixing function order by Sean B. Palmer · 8 days ago
  60. c0900cf Add a task to validate quarantined files and reject or promote them by Sean B. Palmer · 8 days ago
  61. f06f2df Validate session by type instead of name, and _ prefix unused sessions by Alastair McFarlane · 8 days ago
  62. 35c6670 Add taint tracking types to post endpoints by Alastair McFarlane · 8 days ago
  63. ac1ff3c Add taint tracking types to get endpoints by Alastair McFarlane · 9 days ago
  64. 9003b05 Separate the code to finalise a revision by Sean B. Palmer · 8 days ago
  65. 4862aec Fix import by Alastair McFarlane · 8 days ago
  66. 70cdb2a Temporarily allow .gitkeep release files throughout by Sean B. Palmer · 9 days ago
  67. df9462a Fix a problem with rendering information about checks by Sean B. Palmer · 9 days ago
  68. 7cac752 Explicit ldap tls configuration (#755) by Dave Fisher · 10 days ago
  69. 5db7392 Add missing parentheses by Sean B. Palmer · 10 days ago
  70. b96895d Add some simple archive checks for quarantined file validation by Sean B. Palmer · 10 days ago
  71. 98584f0 Fix some e2e tests for checks by Sean B. Palmer · 10 days ago
  72. e8ea2fe #641 - some initial migrations out of the util module for paths and hash calculation. by Alastair McFarlane · 10 days ago
  73. bc3f4f1 Detect which files need to be quarantined by Sean B. Palmer · 10 days ago
  74. 4ca6056 #720 - Ensure paths are relative to the revision path. by Alastair McFarlane · 10 days ago
  75. fc1868b Add tighter rate limit to /distribute/ssh/register to match /ssh/register. Update docs on some other endpoints. Closes #724. by Alastair McFarlane · 10 days ago
  76. 7a828f6 #695 - remove SVN Relase from SVN form. Also add support for Njord bundle as a filetype and project property for file tagging spec by Alastair McFarlane · 10 days ago
  77. ece6e9d Fix more function ordering by improving the order fixing script by Sean B. Palmer · 11 days ago
  78. 731b389 Add the quarantined directory and tests by Sean B. Palmer · 11 days ago
  79. 1354f7a Fix a problem with the download script by Sean B. Palmer · 11 days ago
  80. e68a272 Refactor Dockerfile to streamline Apache RAT installation by Dave Fisher · 11 days ago
  81. efc597e Add a database model for the quarantined upload phase by Sean B. Palmer · 11 days ago
  82. 9e18e43 #725 - make sure failures are logged from PAT failure and they include the user by Alastair McFarlane · 11 days ago
  83. 9b963ad Refactor check get logic to a shared method and remove some extra places where we still used release_name or version. Remove bulk-delete of check results. Update documentation. by Alastair McFarlane · 11 days ago
  84. 21042a3 Remove cache ignore logic since we can't have an empty cache key now. Add policy dependencies to license and RAT checks. Enable local/global caching switch. Fix bug with task list. by Alastair McFarlane · 2 weeks ago
  85. ffd5e8f Move github model into general models out of SBOM models by Alastair McFarlane · 2 weeks ago
  86. ca1db4a Change attestable hashes to dict and reuse to resolve TOCTOU of check result. Use attestable hashes for check reports. Add version to cache key. Add file hash to hash and signature check and github SHA to source_tree. by Alastair McFarlane · 2 weeks ago
  87. 46e8fad Remove check for task running and add unique constraint, for which we try to catch the IntegrityError. Include in playwright tests and don't use revision number to filter individual check results. by Alastair McFarlane · 2 weeks ago
  88. 5e288b2 Set CodeQL to ignore permissions because ATR release data is public by Sean B. Palmer · 11 days ago
  89. f4d7dd3 Improve curl download scripting by Dave Fisher · 14 days ago
  90. fa00a7b Strengthen a couple of authorisation patterns by Sean B. Palmer · 14 days ago
  91. 8fdb8c2 Manual PAT removal; fixes #598 by Andrew K. Musselman · 14 days ago
  92. 7281bdc Use asfquart main, as it now supports maximum session lifetimes by Sean B. Palmer · 14 days ago
  93. e693c2d Keep a strict subset of GitHub OIDC payloads by Sean B. Palmer · 14 days ago
  94. 48078cc Document the use of safe Markdown to HTML rendering in cmarkgfm by Sean B. Palmer · 2 weeks ago
  95. 731a296 Check for banned ASF accounts in more places by Sean B. Palmer · 2 weeks ago
  96. 141036f Bump astral-sh/setup-uv from 7.2.0 to 7.3.0 by dependabot[bot] · 3 weeks ago
  97. 32550b7 Introduce ATR_STATUS and control recipient lists by Dave Fisher · 2 weeks ago
  98. a0cb5cd Return 404 when project is unknown in api endpoint call by Dave Fisher · 2 weeks ago
  99. 030b4fc Use the intersection of algorithms from asyncssh and ssh-audit by Sean B. Palmer · 2 weeks ago
  100. f60da54 Update dependencies by Sean B. Palmer · 2 weeks ago