Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:113844
Return-Path: <ayesh@php.watch>
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 7585 invoked from network); 29 Mar 2021 04:22:18 -0000
Received: from unknown (HELO php-smtp4.php.net) (45.112.84.5)
  by pb1.pair.com with SMTP; 29 Mar 2021 04:22:18 -0000
Received: from php-smtp4.php.net (localhost [127.0.0.1])
	by php-smtp4.php.net (Postfix) with ESMTP id C66D51804D8;
	Sun, 28 Mar 2021 21:19:12 -0700 (PDT)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on php-smtp4.php.net
X-Spam-Level: 
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE,
	SPF_HELO_NONE,SPF_PASS autolearn=no autolearn_force=no version=3.4.2
X-Spam-Virus: No
X-Envelope-From: <ayesh@php.watch>
Received: from forward104o.mail.yandex.net (forward104o.mail.yandex.net [37.140.190.179])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by php-smtp4.php.net (Postfix) with ESMTPS;
	Sun, 28 Mar 2021 21:19:10 -0700 (PDT)
Received: from forward103q.mail.yandex.net (forward103q.mail.yandex.net [IPv6:2a02:6b8:c0e:50:0:640:b21c:d009])
	by forward104o.mail.yandex.net (Yandex) with ESMTP id 6FA8B9400AA;
	Mon, 29 Mar 2021 07:19:08 +0300 (MSK)
Received: from vla1-166bfab327a3.qloud-c.yandex.net (vla1-166bfab327a3.qloud-c.yandex.net [IPv6:2a02:6b8:c0d:3007:0:640:166b:fab3])
	by forward103q.mail.yandex.net (Yandex) with ESMTP id 6AEA661E0002;
	Mon, 29 Mar 2021 07:19:08 +0300 (MSK)
Received: from vla1-1bc5b51c612f.qloud-c.yandex.net (vla1-1bc5b51c612f.qloud-c.yandex.net [2a02:6b8:c0d:89c:0:640:1bc5:b51c])
	by vla1-166bfab327a3.qloud-c.yandex.net (mxback/Yandex) with ESMTP id U4fon3ktX8-J8IKJgQe;
	Mon, 29 Mar 2021 07:19:08 +0300
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=php.watch; s=mail; t=1616991548;
	bh=ur40Xm1UU9zHR9IeI/spdrxGIJfGyrudVSrRwQHr6W0=;
	h=To:Subject:From:In-Reply-To:Cc:Message-ID:Date:References;
	b=Ly4XSpYfos3E+dHD7gyCDj5JtfgWYcyxXod5UpDC8/Y+8sN5597nI4+MXQJx1mYtE
	 0OiC7RzeW+zUNGugk6S1L8Y3rEEL3RJtiO0dph2JiLS6aPoNO31KWDuMBqbP2JKxgv
	 Od9kovjUYNpDe3QBqUROpBtIPkJFpdlil0qV5Jxo=
Authentication-Results: vla1-166bfab327a3.qloud-c.yandex.net; dkim=pass header.i=@php.watch
Received: by vla1-1bc5b51c612f.qloud-c.yandex.net (smtp/Yandex) with ESMTPSA id qzf0BPHzUN-J7KCowhf;
	Mon, 29 Mar 2021 07:19:07 +0300
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	(Client certificate not present)
Received: by mail-ot1-f53.google.com with SMTP id 31-20020a9d00220000b02901b64b9b50b1so11045538ota.9;
        Sun, 28 Mar 2021 21:19:07 -0700 (PDT)
X-Gm-Message-State: AOAM530DXEin/y8r+8A6FQ1vQJeewGKLSmwiI9AAweeY/LEvT3fCCDih
	rqrSGyrjyKxuceMDkemgo5lEGXJra9AQc9/aDXY=
X-Google-Smtp-Source: ABdhPJzlV7ysD2DujjmkJ58//s9YjymtzwOXHC2C1+vQbiPyzDpGH0V1vzOgNPwtUIenQhI9GGwkWt57KkEvSGsAQH4=
X-Received: by 2002:a9d:5a5:: with SMTP id 34mr4925385otd.353.1616991546322;
 Sun, 28 Mar 2021 21:19:06 -0700 (PDT)
MIME-Version: 1.0
References: <CAF+90c9A6zG-nYzc3NNtWGjN7y5FmwqnYzjq6GSFC5NtRsOT0w@mail.gmail.com>
 <CAN2symg2SueEONzMRndsWEhj6anXmeAQwKg+HzKh-o61bcP0Qg@mail.gmail.com>
 <CAESVnVoPEitSCzmrAR2pRY4zUp4WEBc3a1b3q4H_uh1q8ebVWw@mail.gmail.com>
 <CACXBjuirpK+Jw4W8ePib3-ZUVe0EgvcxZNeN-Za15E0g-4BwRg@mail.gmail.com> <CAP=4hCLU2CuDKXuJ=XgB=BAL6FARYSq0MeRJqky0GtQw891ZgQ@mail.gmail.com>
In-Reply-To: <CAP=4hCLU2CuDKXuJ=XgB=BAL6FARYSq0MeRJqky0GtQw891ZgQ@mail.gmail.com>
Date: Mon, 29 Mar 2021 09:48:40 +0530
X-Gmail-Original-Message-ID: <CANLbj-pbGR9a0QVjHXu+J9Z=xpJnpyjfEYGxQzwmj_NnkqBn4Q@mail.gmail.com>
Message-ID: <CANLbj-pbGR9a0QVjHXu+J9Z=xpJnpyjfEYGxQzwmj_NnkqBn4Q@mail.gmail.com>
To: Gabriel Caruso <carusogabriel34@gmail.com>
Cc: Rasmus Lerdorf <rasmus@lerdorf.com>, Sara Golemon <pollita@php.net>, 
	Nikita Popov <nikita.ppv@gmail.com>, PHP Doc Mailing List <phpdoc@lists.php.net>, 
	PHP internals <internals@lists.php.net>, Paul Crovella <paul.crovella@gmail.com>
Content-Type: text/plain; charset="UTF-8"
Subject: Re: [PHP-DEV] Changes to Git commit workflow
From: ayesh@php.watch (Ayesh Karunaratne)

I think this is a great step forward.
With commit signatures required, I think the person who merges a PR
now needs to do so locally. [GitHub CLI](https://cli.github.com/)
helps me a lot to locally checkout a PR quickly, and then
rebase/squash with my own signature.

Thanks to Levi Morrison and Nikita for the very quick response.

>
> On Mon, 29 Mar 2021, 03:30 Rasmus Lerdorf, <rasmus@lerdorf.com> wrote:
>
> > On Sun, Mar 28, 2021 at 17:15 Sara Golemon <pollita@php.net> wrote:
> >
> > > On Sun, Mar 28, 2021 at 6:57 PM Paul Crovella <paul.crovella@gmail.com>
> > > wrote:
> > >
> > >> You might consider requiring commits be signed while you're at it.
> > >>
> > >>
> > > I suggested this as well, and even if we don't require it, we should
> > > STRONGLY encourage it.
> > >
> > > I've been signing my commits for several years now, it's not even that
> > > hard.
> > >
> > I think for php-src commits we can require it. For doc and other repos we
> > can make it optional for now until people are more comfortable with it.
> >
> > -Rasmus
>
>
> >
> > We can require Signed Commits for the main active branches on GitHub:
> > https://docs.github.com/en/github/administering-a-repository/about-protected-branches#require-signed-commits
>
>
> We can create rules that requires that for all active maintained version of
> PHP.
>
> We can set that per repo, or in a organization level.
>
> - Gabriel Caruso