Document the requirement that commits have a public email address #109318
Conversation
See https://discourse.llvm.org/t/hidden-emails-on-github-should-we-do-something-about-it/74223 for details about why this is useful. Note, we currently have soft enforcement for this requirement in the form of a bot which posts comments letting patch authors know their email is private.
|
Another reason why this is potentially becoming more important in the relatively near future is because the proposed governance process intends to use GitHub APIs to verify contributors for voter eligibility and as a way to send ballots/voting instructions to folks. That's not what's driving this PR, but it is what got me motivated to post it. |
|
Are we gonna "upgrade" the bot message from a soft message to more of a requirement? |
To be honest, I don't know. I figured we'd get the policy down on paper first, then we can post another RFC to see if we want to strengthen the enforcement of the policy further. Personally, I'm comfortable with the soft action so long as the person landing changes on behalf of someone is willing to take responsibility for reverts if necessary. But the RFC thread was mixed on how firm we should be with enforcement, so I didn't want to change behavior with this PR. |
|
We can certainly upgrade the bot message and make it a required check. However, this would cover only maybe half of the issue. The bot checks for email addresses used in commits. However, the email address is rewritten during "Squash & Merge" and it seems we neither cannot control nor prevent this. Looks like the only solution is to disable direct merges at all? And delegate to some bot? |
|
I had a similar issue at work where we wanted a check on the final commit created by "Squash & Merge" and not just the earlier commits. We didn't end up going with it but the solution I came up with was using GitHub merge queues and having just that one check enabled |
|
Ping on the documentation changes. |
|
Just a +1 for the general direction. The CoC Committee has encountered this problem recently too - no ability to privately communicate with a community member/contributor if they don't have a public email address associated with their github account. |
llvm-beanz
left a comment
llvm-beanz
left a comment
There was a problem hiding this comment.
I think this policy change is needed and great.
|
I've updated based on the feedback from @rnk |
rnk
left a comment
rnk
left a comment
There was a problem hiding this comment.
Thanks for making the edit!
7 participants
See https://discourse.llvm.org/t/hidden-emails-on-github-should-we-do-something-about-it/74223 for details about why this is important to the community.
Note, we currently have soft enforcement for this requirement in the form of a bot which posts comments letting patch authors know their email is private, so we're already setting expectations in practice; this PR is documenting those expectations for clarity.