#981 Adopt policy that SCM request should be accepted from authorized users only
Closed None Opened 7 years ago by ppisar.

= phenomenon =

Release engineers proceed SCM request from non-authorized applicants.

= background analysis =

spot added SCM change request for 4 packages he does not own nor co-maintain and release engineer has processed the requests. The requests were to create new branches owned by master owners.

Example [https://bugzilla.redhat.com/show_bug.cgi?id=835544#c7]:

From: Tom "spot" Callaway 2012-12-11 21:50:00 GMT

Package Change Request

Package Name: perl-Pod-Markdown
New Branches: f16 f17
Owners: jplesnik mmaslano ppisar psabata
InitialCC: perl-sig

From: Jon Ciesla 2012-12-12 13:14:20 GMT

Git done (by process-git-requests).

This undermines regular maintainers' rights and obligations because they cannot even be sure which branches their packages exist and which they are responsible for. This conflicts with current policy for creating additional branches on behalf third persons (the third person, owner of new branch, asks current owner and current owner submits SCM request.)

= implementation recommendation =

Release engineers will accept SCM changes only from requesters who own or co-maintain the package.

This should probably get opened in the rel-eng trac, not FESCo.

For what it's worth, I believe that unless there is a technical reason not to branch for a stable Fedora target, the packager should be responsible for those branches as well.

Making a whole bunch of packages just for rawhide when they work perfectly well for stable branches is missing the point of maintainership.

We don't create branches in old releases because I was told many times not to create new packages for old Fedoras. Also it would take more time to create new package if we have to create it for all supported Fedoras.
Anyway the script should be fixed.

This is a rel-eng issue, as I said earlier. Work it out with rel-eng.

Login to comment on this ticket.