Skip to content

create the crates-io-infra-admins marker team #1943

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 26, 2025
Merged

create the crates-io-infra-admins marker team #1943

merged 1 commit into from
Aug 26, 2025

Conversation

marcoieni
Copy link
Member

@marcoieni marcoieni commented Aug 11, 2025
edited
Loading

This team contains people with elevated crates-io priviledges.
In a follow-up PR, I would like to give these people write access to https://github.com/rust-lang/crates-io-auth-action/ to solve rust-lang/crates-io-auth-action#13

@github-actions GitHub Actions
Copy link

Dry-run check results 

[WARN  sync_team] sync-team is running in dry mode, no changes will be applied.
[INFO  sync_team] synchronizing github
[INFO  sync_team] 💻 Team Diffs:
    ➕ Creating team:
      Org: rust-lang
      Name: crates-io-infra-admins
      Description: Managed by the rust-lang/team repository.
      Privacy: closed
      Members:
        LawnGnome: member
        Turbo87: member
        carols10cents: member
        jtgeibel: member

jieyouxu
jieyouxu reviewed Aug 11, 2025
View reviewed changes
@jieyouxu jieyouxu added the T-infra Relevant to the infrastructure team. label Aug 12, 2025
Turbo87
Turbo87 approved these changes Aug 25, 2025
View reviewed changes
Copy link
Member

@Turbo87 Turbo87 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm approving this, but I wonder if this should also include the regular infra admins? can teams "inherit" members from other teams? 😅

@marcoieni
Copy link
Member Author

mmmh, I'm not sure how useful it is to add infra admins here as well. We can add it later if needed.

@marcoieni marcoieni marked this pull request as ready for review August 25, 2025 13:45
@marcoieni
Copy link
Member Author

can teams "inherit" members from other teams? 😅

btw, yes

team/teams/inside-rust-reviewers.toml

Line 7 in bd9df68

included-teams = ["leadership-council", "leads", "project-group-leads", "foundation-board-project-directors"]

@marcoieni marcoieni requested a review from jieyouxu August 26, 2025 14:13
jieyouxu
jieyouxu approved these changes Aug 26, 2025
View reviewed changes
Copy link
Member

@jieyouxu jieyouxu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This was discussed in #1889 (comment) re. trusted publishing

A compromised account of a member of the crates.io team (at least one with Heroku access) could achieve the same thing by messing with the production deployment anyway. I think it's fine to give access to the crates.io team, or at least the subset of the crates.io team that has database access.

@jieyouxu jieyouxu added needs-team-repo-admin-review This change requires one of the `team-repo-admins` to review. S-waiting-on-review Status: waiting on review from a team/WG/PG lead, an infra-admin, and/or a team-repo-admin. labels Aug 26, 2025
@jieyouxu jieyouxu added this pull request to the merge queue Aug 26, 2025
Merged via the queue into master with commit 1b59676 Aug 26, 2025
3 checks passed
@marcoieni marcoieni mentioned this pull request Aug 26, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jieyouxu jieyouxu jieyouxu approved these changes

+1 more reviewer

@Turbo87 Turbo87 Turbo87 approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
needs-team-repo-admin-review This change requires one of the `team-repo-admins` to review. S-waiting-on-review Status: waiting on review from a team/WG/PG lead, an infra-admin, and/or a team-repo-admin. T-infra Relevant to the infrastructure team.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@marcoieni @Turbo87 @jieyouxu