The page source contains comments providing guidance to fill out each section. They are invisible when viewing this page. To read it, choose the "view source" link.
Copy the source to a new page before making changes! DO NOT EDIT THIS TEMPLATE FOR YOUR CHANGE PROPOSAL.
For details on how to fill out this form, see the documentation.
To report an issue with this template, file an issue in the pgm_docs repo.
Proven Packager Git Hook
This document represents a proposed Change. As part of the Changes process, proposals are publicly announced in order to receive community feedback. This proposal will only be implemented if approved by the Fedora Engineering Steering Committee.
Summary
Currently, packagers in the proven packager group can push to any dist-git repository, even those that are set to require pull requests. This Change requires passing --push-option=provenpackager explicitly to override ACL checks, preventing inadvertent usage of this privilege.
Owner
- Name: Michel Lind, Neal Gompa, ...
- Email: michel@michel-slm.name, ngompa13@gmail.com
Current status
- Targeted release: Fedora Linux 43
- Last updated: 2025-05-18
- [<link to devel-announce post will be added by Wrangler> Announced]
- [<will be assigned by the Wrangler> Discussion thread]
- FESCo issue: <will be assigned by the Wrangler>
- Tracker bug: <will be assigned by the Wrangler>
- Release notes tracker: <will be assigned by the Wrangler>
Detailed Description
Proven packagers have the ability to push to any dist-git repo, even repositories set to require pull requests to make changes.
There are valid cases where we need this ability to make changes without review - e.g. for mass and targeted rebuilds - but on the other hand we also want to respect the listed maintainers' preference for how a package is maintained.
This Change implements a compromise - where provenpackagers need to explicitly pass a command-line option, --push-option=provenpackager to override the ACL check. This means the maintainers' preference is honored as much as possible, while the override can still be performed in an automated way.
Feedback
Benefit to Fedora
Scope
- Proposal owners:
- Other developers:
- Release engineering: #Releng issue number
- Policies and guidelines: N/A (not needed for this Change)
- Trademark approval: N/A (not needed for this Change)
- Alignment with the Fedora Strategy:
Upgrade/compatibility impact
Early Testing (Optional)
Do you require 'QA Blueprint' support? Y/N
How To Test
User Experience
Dependencies
Contingency Plan
- Contingency mechanism: (What to do? Who will do it?) N/A (not a System Wide Change)
- Contingency deadline: N/A (not a System Wide Change)
- Blocks release? N/A (not a System Wide Change), Yes/No
Documentation
N/A (not a System Wide Change)
