github: master branch protection tune.

* Strict master branch protection requires all PR to be in sync with latest master even if changes are not related and there are no conflicts. * Because we have lots of daily merges this blocks most of the PRs as they are forced to be rebased on top of current master. * This also causes unnecessary automatic CI rebuild of each rebase. * Therefore we are setting strict status checks setting to false. * required_signatures in github means not only `git commit -s` but also cryptographic signature which is not required by us, setting false. * Disable "contexts" checks enforcement, that cause CI problems, mark TODO. References: https://github.com/apache/infrastructure-asfyaml?tab=readme-ov-file https://docs.github.com/en/authentication/managing-commit-signature-verification/about-commit-signature-verification https://docs.github.com/en/authentication/managing-commit-signature-verification/signing-commits Signed-off-by: Tomasz 'CeDeROM' CEDRO <tomek@cedro.info>
2025-12-07 01:44:23 +08:00 · 2025-05-07 13:22:46 +02:00
parent 358469e5bb
commit 11d444403e
1 changed files with 7 additions and 6 deletions
--- a/.asf.yaml
+++ b/.asf.yaml
@@ -19,15 +19,16 @@ github:
  protected_branches:
    master:
      required_status_checks:
-        strict: true
+        strict: false
-        contexts:
+# Contexts cause hanging CI etc disable for now.
-          - Check
+#        contexts:
-          - Lint
+#          - Check
-          - Build
+#          - Lint
 #          - Build
      required_pull_request_reviews:
        dismiss_stale_reviews: true
        require_last_push_approval: true
        required_approving_review_count: 2
      required_linear_history: true
-      required_signatures: true
+      required_signatures: false
      required_conversation_resolution: true