Don't warn of newer tasks if in grace period #1228
Conversation
|
I'm wondering if we want the grace period, there is a scenario when a newer task is available and within a grace period long enough or often enough that the Task that is used is no longer trusted. So by that point no warning would be seen until a blocking violation. Perhaps I misunderstood what EC-944 want's to achieve. |
Yeah, it's a risk. I think we just have to make sure there is enough time between the grace period and the time it becomes a violation. We could make sure that that period is still 30 days. WDYT? Also... Konflux is decreasing the frequency of updates to once a week so I think that increases the need of this PR as well as maybe requiring us to reassess if users still have at least 30 days to update from a visible warning. |
|
I'm reworking this based on the |
zregvart
force-pushed
the
issue/EC-944
branch
from
58da16f to
a72d390
Compare
|
Updated description to reflect the latest implementation |
Adds effective_on of the newest Task to the message of the policy rules asserting that the Tasks used are up to date. Reference: https://issues.redhat.com/browse/EC-944
Adds new rule data `task_expiry_warning_days` (default 0) if given and greater than 0 then any Task that will expire in `task_expiry_warning_days` days will emit a warning. Reference: https://issues.redhat.com/browse/EC-944
zregvart
force-pushed
the
issue/EC-944
branch
from
a72d390 to
7176fde
Compare
|
Suggestions applied, merging this now |
3 participants
Adds new rule data
task_expiry_warning_days(default 0) if given and greater than 0 then any Task that will expire intask_expiry_warning_daysdays will emit a warning.Also adds effective_on of the newest Task to the message of the policy rules asserting that the Tasks used are up to date.
Reference: https://issues.redhat.com/browse/EC-944