You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Apr 7, 2024. It is now read-only.
To improve the security of the ORAS project we need to enforce the branch policies for this repository. I propose that we enforce the policies as follows:
Use the following rules for main and release/* branches:
Require PR before merging
Require 3 approvals
Dismiss stale PR approvals when new commits are pushed
Require review from Code Owners
Require status checks to pass before merging
Require conversation resolution before merging
Require signed commits
Do not allow bypass the above settings
Please add your comments and proposals for additional changes to this issue.
The text was updated successfully, but these errors were encountered:
"Require 3 approvals" is not applicable to this repository since we only have 3 code owners.
Additionally, we require branches to be up to date before merging, which is useful but not captured in this issue.
It is worth noting that "require branches to be up to date before merging" somehow conflicts with "dismiss stale PR approvals when new commits are pushed".
To improve the security of the ORAS project we need to enforce the branch policies for this repository. I propose that we enforce the policies as follows:
main
andrelease/*
branches:Please add your comments and proposals for additional changes to this issue.
The text was updated successfully, but these errors were encountered: