Skip to content

Rebasing to new baseline OSS policies #376

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
GeorgeWestwater merged 27 commits into from
Sep 17, 2025
Merged

Rebasing to new baseline OSS policies #376

GeorgeWestwater merged 27 commits into from
Sep 17, 2025

Conversation

@GeorgeWestwater
Copy link
Contributor

@GeorgeWestwater GeorgeWestwater commented Sep 17, 2025

This PR contains updates to the OSS practices and policies documentation, including:

  • Open-core policy updates
  • Community meetings and CAC documentation
  • Formatting improvements and cleanup
  • Trademark guidelines clarifications
  • Project membership and governance updates
  • Header formatting consistency for MkDocs

Please review the changes and provide feedback.

GeorgeWestwater and others added 27 commits June 13, 2025 06:29
@GeorgeWestwater
repo restructuring
4b78142
@GeorgeWestwater
changes based upon first round of feedback
e3e6533
@jstrauss
Updating reference from Chef Software Inc (as owner) to Progress Soft…
e7d0ce6 
…ware Corporation.
@jstrauss
Minor grammatical updates; linking to Apache 2.0 official license pag…
31e4ea6 
…e; changing reference from "project owners" to advisors.
@jstrauss
Cleanup; clarifications pf physical and digital spaces; updating some…
49953d3 
… terms with respect to Decider and Community Organizers.
@jstrauss
typos
b8734b3
@jstrauss
General cleanup.
de184dc
@jstrauss
Attempting to fix formatting with the bullet list for Outside Contrib…
fcc6c17 
…utors status
@jstrauss
Minor cleanup
9514485
@jstrauss
formatting
7a4fb92
@jstrauss
Might have been a header tag problem... nothing below Alums appears i…
8904f03 
…n the page's TOC. Fixing.
@jstrauss
Cleanup and formatting
8f9ca4c
@jstrauss
Adding a paragraph to explain that OSS licenses, in general, do NOT c…
83de439 
…onvey any rights over trademarks or logo marks.
@jstrauss
Adding a section stating that the trademark guidelines apply regardle…
157c03b 
…ss of whether the downstream distriution is commercialized or offered for free use.
@jstrauss
Cleanup and formatting
375bb90
@jstrauss
Minor formatting typo
40424fd
@jstrauss
Cleanup and cross-links
c94d5c2
@jstrauss
Fix formatting inconsistencies
ba7d2b5
@jstrauss
Putting "real" placeholder on the page.
db95291
@jstrauss
Fleshing out community meetings and CAC; fixing headers to TOC consis…
9d9ece7 
…tency; other cleanup.
@jstrauss
Adding date and time for CAC meetings.
4a479bf
@jstrauss
Very minor cleanup
15d135c
@jstrauss
minor cleanup
1b3659e
@GeorgeWestwater
Removed or updated the header to proper MKdocs format; removed the he…
d4329a8 
…ader from "ready" pages
@GeorgeWestwater
open-core policy
273d080
@GeorgeWestwater
changed phil to jaymzh
ba5fc1d
@GeorgeWestwater
Merge remote-tracking branch 'origin/main' into draft
28d560b
@GeorgeWestwater GeorgeWestwater requested review from a team as code owners September 17, 2025 13:09
@GeorgeWestwater GeorgeWestwater requested a review from a team as a code owner September 17, 2025 13:09
github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 17, 2025
View reviewed changes
.github/workflows/publish.yml
Comment on lines +10 to +23
name: Deploy docs
runs-on: ubuntu-latest
steps:
- name: Checkout master
uses: actions/checkout@v1

- name: Deploy docs
uses: mhausenblas/mkdocs-deploy-gh-pages@master
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
CONFIG_FILE: mkdocs.yml
#EXTRA_PACKAGES: build-base
# GITHUB_DOMAIN: github.myenterprise.com
REQUIREMENTS: /requirements.txt No newline at end of file

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Copilot Autofix

AI 4 months ago

The best way to fix the problem is to add a permissions block to the workflow, either at the root level (applying to all jobs), or at the job-level (applying only to build). For minimal change and clarity, add it just above the build job if you only want it affecting this job. For deploying to GitHub Pages, the deployment action (mkdocs-deploy-gh-pages) almost always needs contents: write permission to push the generated documentation to the gh-pages branch. Therefore, the permissions block should be:

permissions:
  contents: write

Insert this block either at the top level (just under name/on), or indented under the build: job (best practice: put it at the job level to scope it tightly). So in this snippet, add under line 9, before line 10, properly indented.

Suggested changeset 1
.github/workflows/publish.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -7,6 +7,8 @@
 
 jobs:
   build:
+    permissions:
+      contents: write
     name: Deploy docs
     runs-on: ubuntu-latest
     steps:
EOF
@@ -7,6 +7,8 @@

jobs:
build:
permissions:
contents: write
name: Deploy docs
runs-on: ubuntu-latest
steps:
Copilot is powered by AI and may make mistakes. Always verify output.
@GeorgeWestwater GeorgeWestwater merged commit 638ac33 into main Sep 17, 2025
5 of 6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@GeorgeWestwater @jstrauss