|
1 | 1 | # Repository settings |
2 | 2 |
|
3 | 3 | This document describes any changes that have been made to the |
4 | | -settings for this repository beyond the [OpenTelemetry default repository |
5 | | -settings](https://github.com/open-telemetry/community/blob/main/docs/how-to-configure-new-repository.md#repository-settings). |
6 | | - |
7 | | -## General > Pull Requests |
8 | | - |
9 | | -- Allow squash merging > Default to pull request title |
10 | | - |
11 | | -- Allow auto-merge |
12 | | - |
13 | | -## Actions > General |
14 | | - |
15 | | -- Fork pull request workflows from outside collaborators: |
16 | | - "Require approval for first-time contributors who are new to GitHub" |
17 | | - |
18 | | - (To reduce friction for new contributors, |
19 | | - as the default is "Require approval for first-time contributors") |
20 | | - |
21 | | -- Workflow permissions |
22 | | - - Default permissions granted to the `GITHUB_TOKEN` when running workflows in this repository: |
23 | | - Read repository contents and packages permissions |
24 | | - - Allow GitHub Actions to create and approve pull requests: UNCHECKED |
25 | | - |
26 | | -## Branch protections |
27 | | - |
28 | | -The order of branch protection rules |
29 | | -[can be important](https://docs.github.com/en/repositories/configuring-branches-and-merges-in-your-repository/defining-the-mergeability-of-pull-requests/managing-a-branch-protection-rule#about-branch-protection-rules). |
30 | | -The branch protection rules below should be added before the `**/**` branch protection rule |
31 | | -(this may require deleting the `**/**` rule and recreating it at the end). |
32 | | - |
33 | | -### `main` |
34 | | - |
35 | | -- Require branches to be up to date before merging: UNCHECKED |
36 | | - |
37 | | - (PR jobs take too long, and leaving this unchecked has not been a significant problem) |
38 | | - |
39 | | -- Status checks that are required: |
40 | | - |
41 | | - - EasyCLA |
42 | | - - required-status-check |
43 | | - - gradle-wrapper-validation |
44 | | - - CodeQL |
45 | | - |
46 | | -### `release/*` |
47 | | - |
48 | | -Same settings as above for [`main`](#main). |
49 | | - |
50 | | -### `v0.*` and `v1.*` (old-style release branches) |
51 | | - |
52 | | -- Lock branch: CHECKED |
53 | | - |
54 | | -- Do not allow bypassing the above settings: CHECKED |
55 | | - |
56 | | -### `cloudfoundry` |
57 | | - |
58 | | -Same settings as above for [`main`](#main), |
59 | | -except for the `required-status-check` required status check. |
60 | | - |
61 | | -### `renovate/**/*` and `otelbot/**/*` |
62 | | - |
63 | | -Same settings as |
64 | | -for [`dependabot/**/*`](https://github.com/open-telemetry/community/blob/main/docs/how-to-configure-new-repository.md#branch-protection-rule-dependabot) |
65 | | - |
66 | | -### `gh-pages` |
67 | | - |
68 | | -- Everything UNCHECKED |
69 | | - |
70 | | - (This branch is currently only used for directly pushing benchmarking results from the |
71 | | - [Nightly overhead benchmark](https://github.com/open-telemetry/opentelemetry-java-instrumentation/actions/workflows/nightly-benchmark-overhead.yml) |
72 | | - job) |
73 | | - |
74 | | -## Code security and analysis |
75 | | - |
76 | | -- Secret scanning: Enabled |
| 4 | +settings in this repository outside the settings tracked in the |
| 5 | +private admin repo. |
77 | 6 |
|
78 | 7 | ## Secrets and variables > Actions |
79 | 8 |
|
|
0 commit comments