#5418: Adopt policy that SCM request should be accepted from authorized users only

Fri Dec 14 07:49:17 UTC 2012

#5418: Adopt policy that SCM request should be accepted from authorized users only
--------------------+------------------------
 Reporter:  ppisar  |       Owner:  rel-eng@…
     Type:  defect  |      Status:  new
Milestone:          |   Component:  git
 Keywords:  SCM     |  Blocked By:
 Blocking:          |
--------------------+------------------------
 FESCo ticket [https://fedorahosted.org/fesco/ticket/981] moved to rel-eng
 quee.

 = Phenomenon

 Release engineers proceed SCM request from non-authorized applicants.

 = Background Analysis

 spot added SCM change request for 4 packages he does not own nor co-
 maintain and release engineer has processed the requests. The requests
 were to create new branches owned by master owners.

 Example [https://bugzilla.redhat.com/show_bug.cgi?id=835544#c7]:

 {{{
 From: Tom "spot" Callaway 2012-12-11 21:50:00 GMT

 Package Change Request
 ======================
 Package Name: perl-Pod-Markdown
 New Branches: f16 f17
 Owners: jplesnik mmaslano ppisar psabata
 InitialCC: perl-sig

 From: Jon Ciesla 2012-12-12 13:14:20 GMT

 Git done (by process-git-requests).
 }}}

 This undermines regular maintainers' rights and obligations because they
 cannot even be sure which branches their packages exist and which they are
 responsible for. This conflicts with current policy for creating
 additional branches on behalf third persons (the third person, owner of
 new branch, asks current owner and current owner submits SCM request.)

 = Implementation recommendation

 Release engineers will accept SCM changes only from requesters who own or
 co-maintaint the package.

-- 
Ticket URL: <https://fedorahosted.org/rel-eng/ticket/5418>
Fedora Release Engineering <http://fedorahosted.org/rel-eng>
Release Engineering for the Fedora Project