-
|
As per https://github.blog/changelog/2025-10-28-immutable-releases-are-now-generally-available/, there is now an option to opt into immutable releases. This would provide a little bit of confidence in Git for Windows, as releases could not be tampered with after being released by the automation. Does anyone see any downside? Side note: We cannot do this org-wide because https://github.com/git-for-windows/git-sdk-64/releases/tag/ci-artifacts needs to stay a "rolling release", i.e. it will be modified frequently, intentionally so. But we could consider opting other repositories into immutable releases, e.g. the Actions (like I am looking in particular for feedback from my friendly co-maintainers, @rimrul and @mjcheetham. |
Beta Was this translation helpful? Give feedback.
Replies: 3 comments 7 replies
-
Presumably this would already prevent modifications during the automation. We need to keep in mind that for https://github.com/git-for-windows/git |
Beta Was this translation helpful? Give feedback.
-
Here, we call Side note: The best practice these days seems to be to convert the positional parameters to an object with named parameters, that would make this clearer, I guess. |
Beta Was this translation helpful? Give feedback.
-
|
I guess making the draft immutable would defeat the purpose of a draft. We do convert from draft to non-draft in the first update though and then update again to create a discussion. That probably continues to work, but we should test that. |
Beta Was this translation helpful? Give feedback.
-
|
That's a good point! We likely need to revert git-for-windows/git-for-windows-automation@b59f512. |
Beta Was this translation helpful? Give feedback.
-
Beta Was this translation helpful? Give feedback.
-
|
I flipped the switch for |
Beta Was this translation helpful? Give feedback.
-
|
I'll just give an extra 👍 to making the actions be immutable releases, too. That plugs a big security hole whenever you refer to an action by tag and not commit hash. |
Beta Was this translation helpful? Give feedback.
-
For the record, these Actions do not even have any non-source assets, and therefore do not need any careful "first create in draft mode, then upload assets, then mark as non-draft" handling: So I flipped the switch for them. For So I flipped the switch there, too. For
And indeed, the code agrees: it sets So I flipped the switch there, too. |
Beta Was this translation helpful? Give feedback.
-
|
Okay, I went ahead and turned on immutable releases where applicable:
These repositories do have releases, but they are "rolling releases", i.e. they cannot be immutable: These have releases, but I skipped them:
These repositories have no releases, nor are there any plans on adding any: |
Beta Was this translation helpful? Give feedback.
Okay, I went ahead and turned on immutable releases where applicable:
git(the main repository)get-azure-pipelines-artifact(Action, no binary assets)setup-git-for-windows-sdk(Action, no binary assets)rss-to-issues(Action, no binary assets)git-snapshots(snapshot builds)pacman-repo(the repository containing the packages used in Git for Windows' SDK)These repositories do have releases, but they are "rolling releases", i.e. they cannot be immutable:
git-sdk-arm64git-sdk-64git-sdk-32These have releases, but I skipped them:
build-extra(only has the Git for Windows SDK)MSYS2-packages(only test releases)MINGW-packages(only test releases)msys2-runtime(only test releases)T…