add repos - splitted from common

eclipse-otterdog[bot] commented 4 months ago

This is your friendly self-service bot.

Thank you for raising a pull request to update the configuration of your GitHub organization. You can manually add reviewers to this PR to eventually enable auto-merging.

The following conditions need to fulfilled for auto-merging to be available:

valid configuration
approved by a project lead
does not require any secrets
does not update settings only accessible via the GitHub Web UI
does not remove any resource

Otterdog commands and options

You can trigger otterdog actions by commenting on this PR: - `/otterdog team-info` checks the team / org membership for the PR author - `/otterdog validate` validates the configuration change - `/otterdog validate info` validates the configuration change, printing also validation infos - `/otterdog check-sync` checks if the base ref is in sync with live settings - `/otterdog merge` merges and applies the changes if the PR is eligible for auto-merging (only accessible for the author) - `/otterdog done` notifies the self-service bot that a required manual apply operation has been performed (only accessible for members of the admin team) - `/otterdog apply` re-apply a previously failed attempt (only accessible for members of the admin team)

eclipse-otterdog[bot] commented 4 months ago

This is your friendly self-service bot.

The author (stbischof) of this PR is associated with this organization in the role of MEMBER.

Additionally, stbischof is a member of the following teams:

eclipse-otterdog[bot] commented 4 months ago

This is your friendly self-service bot. Please find below the validation of the requested configuration changes:

Diff for 4d92723575d0d5537dffa6e61c18c51750ce8cb0

```diff Organization technology.daanse[id=eclipse-daanse] there have been 15 validation infos, enable verbose output with '-v' to to display them. + add repository[name="org.eclipse.daanse.emf.dbmapping"] { + allow_auto_merge = false + allow_forking = true + allow_merge_commit = false + allow_rebase_merge = true + allow_squash_merge = false + allow_update_branch = false + archived = false + code_scanning_default_setup_enabled = false + default_branch = "main" + delete_branch_on_merge = false + dependabot_alerts_enabled = true + dependabot_security_updates_enabled = true + description = "Repository for the emf dbmapping related modules" + gh_pages_build_type = "disabled" + has_discussions = false + has_issues = true + has_projects = true + has_wiki = false + homepage = null + is_template = false + merge_commit_message = "PR_TITLE" + merge_commit_title = "MERGE_MESSAGE" + name = "org.eclipse.daanse.emf.dbmapping" + private = false + private_vulnerability_reporting_enabled = false + secret_scanning = "enabled" + secret_scanning_push_protection = "enabled" + squash_merge_commit_message = "COMMIT_MESSAGES" + squash_merge_commit_title = "COMMIT_OR_PR_TITLE" + template_repository = null + topics = [] + web_commit_signoff_required = true + } + add repo_workflow_settings[repository="org.eclipse.daanse.emf.dbmapping"] { + enabled = true + } + add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.emf.dbmapping"] { + name = "SONAR_ORGANIZATION" + value = "eclipse-daanse" + } + add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.emf.dbmapping"] { + name = "SONAR_PROJECT_KEY" + value = "eclipse-daanse_org.eclipse.daanse.emf.dbmapping" + } + add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.emf.dbmapping"] { + allows_deletions = false + allows_force_pushes = false + blocks_creations = false + bypass_force_push_allowances = [] + bypass_pull_request_allowances = [] + dismisses_stale_reviews = false + is_admin_enforced = false + lock_allows_fetch_and_merge = false + lock_branch = false + pattern = "main" + require_last_push_approval = false + required_approving_review_count = "0" + required_status_checks = [ + "eclipse-eca-validation:eclipsefdn/eca" + ], + requires_code_owner_reviews = false + requires_commit_signatures = false + requires_conversation_resolution = false + requires_deployments = false + requires_linear_history = true + requires_pull_request = true + requires_status_checks = true + requires_strict_status_checks = true + restricts_pushes = false + restricts_review_dismissals = false + } + add repository[name="org.eclipse.daanse.io.fs.watcher"] { + allow_auto_merge = false + allow_forking = true + allow_merge_commit = false + allow_rebase_merge = true + allow_squash_merge = false + allow_update_branch = false + archived = false + code_scanning_default_setup_enabled = false + default_branch = "main" + delete_branch_on_merge = false + dependabot_alerts_enabled = true + dependabot_security_updates_enabled = true + description = "Repository for the io watcher" + gh_pages_build_type = "disabled" + has_discussions = false + has_issues = true + has_projects = true + has_wiki = false + homepage = null + is_template = false + merge_commit_message = "PR_TITLE" + merge_commit_title = "MERGE_MESSAGE" + name = "org.eclipse.daanse.io.fs.watcher" + private = false + private_vulnerability_reporting_enabled = false + secret_scanning = "enabled" + secret_scanning_push_protection = "enabled" + squash_merge_commit_message = "COMMIT_MESSAGES" + squash_merge_commit_title = "COMMIT_OR_PR_TITLE" + template_repository = null + topics = [] + web_commit_signoff_required = true + } + add repo_workflow_settings[repository="org.eclipse.daanse.io.fs.watcher"] { + enabled = true + } + add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.io.fs.watcher"] { + name = "SONAR_ORGANIZATION" + value = "eclipse-daanse" + } + add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.io.fs.watcher"] { + name = "SONAR_PROJECT_KEY" + value = "eclipse-daanse_org.eclipse.daanse.io.fs.watcher" + } + add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.io.fs.watcher"] { + allows_deletions = false + allows_force_pushes = false + blocks_creations = false + bypass_force_push_allowances = [] + bypass_pull_request_allowances = [] + dismisses_stale_reviews = false + is_admin_enforced = false + lock_allows_fetch_and_merge = false + lock_branch = false + pattern = "main" + require_last_push_approval = false + required_approving_review_count = "0" + required_status_checks = [ + "eclipse-eca-validation:eclipsefdn/eca" + ], + requires_code_owner_reviews = false + requires_commit_signatures = false + requires_conversation_resolution = false + requires_deployments = false + requires_linear_history = true + requires_pull_request = true + requires_status_checks = true + requires_strict_status_checks = true + restricts_pushes = false + restricts_review_dismissals = false + } + add repository[name="org.eclipse.daanse.jakarta.servlet"] { + allow_auto_merge = false + allow_forking = true + allow_merge_commit = false + allow_rebase_merge = true + allow_squash_merge = false + allow_update_branch = false + archived = false + code_scanning_default_setup_enabled = false + default_branch = "main" + delete_branch_on_merge = false + dependabot_alerts_enabled = true + dependabot_security_updates_enabled = true + description = "Repository for the jakarta servlet related modules" + gh_pages_build_type = "disabled" + has_discussions = false + has_issues = true + has_projects = true + has_wiki = false + homepage = null + is_template = false + merge_commit_message = "PR_TITLE" + merge_commit_title = "MERGE_MESSAGE" + name = "org.eclipse.daanse.jakarta.servlet" + private = false + private_vulnerability_reporting_enabled = false + secret_scanning = "enabled" + secret_scanning_push_protection = "enabled" + squash_merge_commit_message = "COMMIT_MESSAGES" + squash_merge_commit_title = "COMMIT_OR_PR_TITLE" + template_repository = null + topics = [] + web_commit_signoff_required = true + } + add repo_workflow_settings[repository="org.eclipse.daanse.jakarta.servlet"] { + enabled = true + } + add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jakarta.servlet"] { + name = "SONAR_ORGANIZATION" + value = "eclipse-daanse" + } + add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jakarta.servlet"] { + name = "SONAR_PROJECT_KEY" + value = "eclipse-daanse_org.eclipse.daanse.jakarta.servlet" + } + add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jakarta.servlet"] { + allows_deletions = false + allows_force_pushes = false + blocks_creations = false + bypass_force_push_allowances = [] + bypass_pull_request_allowances = [] + dismisses_stale_reviews = false + is_admin_enforced = false + lock_allows_fetch_and_merge = false + lock_branch = false + pattern = "main" + require_last_push_approval = false + required_approving_review_count = "0" + required_status_checks = [ + "eclipse-eca-validation:eclipsefdn/eca" + ], + requires_code_owner_reviews = false + requires_commit_signatures = false + requires_conversation_resolution = false + requires_deployments = false + requires_linear_history = true + requires_pull_request = true + requires_status_checks = true + requires_strict_status_checks = true + restricts_pushes = false + restricts_review_dismissals = false + } + add repository[name="org.eclipse.daanse.jdbc.datasource.metatype.h2"] { + allow_auto_merge = false + allow_forking = true + allow_merge_commit = false + allow_rebase_merge = true + allow_squash_merge = false + allow_update_branch = false + archived = false + code_scanning_default_setup_enabled = false + default_branch = "main" + delete_branch_on_merge = false + dependabot_alerts_enabled = true + dependabot_security_updates_enabled = true + description = "Repository for the datasoure metatype support for h2" + gh_pages_build_type = "disabled" + has_discussions = false + has_issues = true + has_projects = true + has_wiki = false + homepage = null + is_template = false + merge_commit_message = "PR_TITLE" + merge_commit_title = "MERGE_MESSAGE" + name = "org.eclipse.daanse.jdbc.datasource.metatype.h2" + private = false + private_vulnerability_reporting_enabled = false + secret_scanning = "enabled" + secret_scanning_push_protection = "enabled" + squash_merge_commit_message = "COMMIT_MESSAGES" + squash_merge_commit_title = "COMMIT_OR_PR_TITLE" + template_repository = null + topics = [] + web_commit_signoff_required = true + } + add repo_workflow_settings[repository="org.eclipse.daanse.jdbc.datasource.metatype.h2"] { + enabled = true + } + add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jdbc.datasource.metatype.h2"] { + name = "SONAR_ORGANIZATION" + value = "eclipse-daanse" + } + add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jdbc.datasource.metatype.h2"] { + name = "SONAR_PROJECT_KEY" + value = "eclipse-daanse_org.eclipse.daanse.jdbc.datasource.metatype.h2" + } + add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jdbc.datasource.metatype.h2"] { + allows_deletions = false + allows_force_pushes = false + blocks_creations = false + bypass_force_push_allowances = [] + bypass_pull_request_allowances = [] + dismisses_stale_reviews = false + is_admin_enforced = false + lock_allows_fetch_and_merge = false + lock_branch = false + pattern = "main" + require_last_push_approval = false + required_approving_review_count = "0" + required_status_checks = [ + "eclipse-eca-validation:eclipsefdn/eca" + ], + requires_code_owner_reviews = false + requires_commit_signatures = false + requires_conversation_resolution = false + requires_deployments = false + requires_linear_history = true + requires_pull_request = true + requires_status_checks = true + requires_strict_status_checks = true + restricts_pushes = false + restricts_review_dismissals = false + } + add repository[name="org.eclipse.daanse.jdbc.db"] { + allow_auto_merge = false + allow_forking = true + allow_merge_commit = false + allow_rebase_merge = true + allow_squash_merge = false + allow_update_branch = false + archived = false + code_scanning_default_setup_enabled = false + default_branch = "main" + delete_branch_on_merge = false + dependabot_alerts_enabled = true + dependabot_security_updates_enabled = true + description = "Repository for the jdbc related database utils" + gh_pages_build_type = "disabled" + has_discussions = false + has_issues = true + has_projects = true + has_wiki = false + homepage = null + is_template = false + merge_commit_message = "PR_TITLE" + merge_commit_title = "MERGE_MESSAGE" + name = "org.eclipse.daanse.jdbc.db" + private = false + private_vulnerability_reporting_enabled = false + secret_scanning = "enabled" + secret_scanning_push_protection = "enabled" + squash_merge_commit_message = "COMMIT_MESSAGES" + squash_merge_commit_title = "COMMIT_OR_PR_TITLE" + template_repository = null + topics = [] + web_commit_signoff_required = true + } + add repo_workflow_settings[repository="org.eclipse.daanse.jdbc.db"] { + enabled = true + } + add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jdbc.db"] { + name = "SONAR_ORGANIZATION" + value = "eclipse-daanse" + } + add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jdbc.db"] { + name = "SONAR_PROJECT_KEY" + value = "eclipse-daanse_org.eclipse.daanse.jdbc.db" + } + add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jdbc.db"] { + allows_deletions = false + allows_force_pushes = false + blocks_creations = false + bypass_force_push_allowances = [] + bypass_pull_request_allowances = [] + dismisses_stale_reviews = false + is_admin_enforced = false + lock_allows_fetch_and_merge = false + lock_branch = false + pattern = "main" + require_last_push_approval = false + required_approving_review_count = "0" + required_status_checks = [ + "eclipse-eca-validation:eclipsefdn/eca" + ], + requires_code_owner_reviews = false + requires_commit_signatures = false + requires_conversation_resolution = false + requires_deployments = false + requires_linear_history = true + requires_pull_request = true + requires_status_checks = true + requires_strict_status_checks = true + restricts_pushes = false + restricts_review_dismissals = false + } + add repository[name="org.eclipse.daanse.jdbc.loader.csv"] { + allow_auto_merge = false + allow_forking = true + allow_merge_commit = false + allow_rebase_merge = true + allow_squash_merge = false + allow_update_branch = false + archived = false + code_scanning_default_setup_enabled = false + default_branch = "main" + delete_branch_on_merge = false + dependabot_alerts_enabled = true + dependabot_security_updates_enabled = true + description = "Repository for the jdbc dataloader from csv" + gh_pages_build_type = "disabled" + has_discussions = false + has_issues = true + has_projects = true + has_wiki = false + homepage = null + is_template = false + merge_commit_message = "PR_TITLE" + merge_commit_title = "MERGE_MESSAGE" + name = "org.eclipse.daanse.jdbc.loader.csv" + private = false + private_vulnerability_reporting_enabled = false + secret_scanning = "enabled" + secret_scanning_push_protection = "enabled" + squash_merge_commit_message = "COMMIT_MESSAGES" + squash_merge_commit_title = "COMMIT_OR_PR_TITLE" + template_repository = null + topics = [] + web_commit_signoff_required = true + } + add repo_workflow_settings[repository="org.eclipse.daanse.jdbc.loader.csv"] { + enabled = true + } + add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jdbc.loader.csv"] { + name = "SONAR_ORGANIZATION" + value = "eclipse-daanse" + } + add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jdbc.loader.csv"] { + name = "SONAR_PROJECT_KEY" + value = "eclipse-daanse_org.eclipse.daanse.jdbc.loader.csv" + } + add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jdbc.loader.csv"] { + allows_deletions = false + allows_force_pushes = false + blocks_creations = false + bypass_force_push_allowances = [] + bypass_pull_request_allowances = [] + dismisses_stale_reviews = false + is_admin_enforced = false + lock_allows_fetch_and_merge = false + lock_branch = false + pattern = "main" + require_last_push_approval = false + required_approving_review_count = "0" + required_status_checks = [ + "eclipse-eca-validation:eclipsefdn/eca" + ], + requires_code_owner_reviews = false + requires_commit_signatures = false + requires_conversation_resolution = false + requires_deployments = false + requires_linear_history = true + requires_pull_request = true + requires_status_checks = true + requires_strict_status_checks = true + restricts_pushes = false + restricts_review_dismissals = false + } + add repository[name="org.eclipse.daanse.webconsole.branding"] { + allow_auto_merge = false + allow_forking = true + allow_merge_commit = false + allow_rebase_merge = true + allow_squash_merge = false + allow_update_branch = false + archived = false + code_scanning_default_setup_enabled = false + default_branch = "main" + delete_branch_on_merge = false + dependabot_alerts_enabled = true + dependabot_security_updates_enabled = true + description = "Repository for the webconsole branding" + gh_pages_build_type = "disabled" + has_discussions = false + has_issues = true + has_projects = true + has_wiki = false + homepage = null + is_template = false + merge_commit_message = "PR_TITLE" + merge_commit_title = "MERGE_MESSAGE" + name = "org.eclipse.daanse.webconsole.branding" + private = false + private_vulnerability_reporting_enabled = false + secret_scanning = "enabled" + secret_scanning_push_protection = "enabled" + squash_merge_commit_message = "COMMIT_MESSAGES" + squash_merge_commit_title = "COMMIT_OR_PR_TITLE" + template_repository = null + topics = [] + web_commit_signoff_required = true + } + add repo_workflow_settings[repository="org.eclipse.daanse.webconsole.branding"] { + enabled = true + } + add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.webconsole.branding"] { + name = "SONAR_ORGANIZATION" + value = "eclipse-daanse" + } + add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.webconsole.branding"] { + name = "SONAR_PROJECT_KEY" + value = "eclipse-daanse_org.eclipse.daanse.webconsole.branding" + } + add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.webconsole.branding"] { + allows_deletions = false + allows_force_pushes = false + blocks_creations = false + bypass_force_push_allowances = [] + bypass_pull_request_allowances = [] + dismisses_stale_reviews = false + is_admin_enforced = false + lock_allows_fetch_and_merge = false + lock_branch = false + pattern = "main" + require_last_push_approval = false + required_approving_review_count = "0" + required_status_checks = [ + "eclipse-eca-validation:eclipsefdn/eca" + ], + requires_code_owner_reviews = false + requires_commit_signatures = false + requires_conversation_resolution = false + requires_deployments = false + requires_linear_history = true + requires_pull_request = true + requires_status_checks = true + requires_strict_status_checks = true + restricts_pushes = false + restricts_review_dismissals = false + } Plan: 35 to add, 0 to change, 0 to delete. ```

eclipse-otterdog[bot] commented 4 months ago

This is your friendly self-service bot. The current configuration is out-of-sync with the live settings:

Diff to live settings

```diff Organization technology.daanse[id=eclipse-daanse] there have been 8 validation infos, enable verbose output with '-v' to to display them. ! settings { ! default_code_security_configurations_disabled = false -> true ! } Plan: 0 to add, 1 to change, 0 to delete. ```

The current configuration needs to be updated to reflect the live settings otherwise they would be overwritten when this PR gets merged.

cc @eclipse-daanse/eclipsefdn-security

cc @eclipse-daanse/eclipsefdn-releng

stbischof commented 4 months ago

@eclipse-daanse/eclipsefdn-releng

can you help me with that? i am not sure how i can handle this

!   settings {
!     default_code_security_configurations_disabled = false -> true
!   }

netomi commented 4 months ago

sorry, I am currently rolling out a new feature and not all projects are done applying the changes, will take a few more minutes and then it will be resolved.

netomi commented 4 months ago

/otterdog check-sync

eclipse-otterdog[bot] commented 4 months ago

This is your friendly self-service bot. The current configuration is in-sync with the live settings. :rocket:

eclipse-otterdog[bot] commented 4 months ago

This is your friendly self-service bot. This Pull Request is eligible for auto-merging as it passed the following checks:

valid configuration
approved by a project lead
does not require any secrets
does not update settings only accessible via the GitHub Web UI
does not remove any resource

In order to automatically merge and apply the changes, add a comment /otterdog merge. :rocket:

netomi commented 4 months ago

you are ready to merge now, sorry for the inconvenience.

stbischof commented 4 months ago

/otterdog merge

eclipse-otterdog[bot] commented 4 months ago

This is your friendly self-service bot.

The following changes have been successfully applied:


Organization technology.daanse[id=eclipse-daanse]
  there have been 15 validation infos, enable verbose output with '-v' to to display them.

+  add repository[name="org.eclipse.daanse.emf.dbmapping"] {
+    allow_auto_merge                  = false
+    allow_forking                     = true
+    allow_merge_commit                = false
+    allow_rebase_merge                = true
+    allow_squash_merge                = false
+    allow_update_branch               = false
+    archived                          = false
+    code_scanning_default_setup_enabled = false
+    default_branch                    = "main"
+    delete_branch_on_merge            = false
+    dependabot_alerts_enabled         = true
+    dependabot_security_updates_enabled = true
+    description                       = "Repository for the emf dbmapping related modules"
+    gh_pages_build_type               = "disabled"
+    has_discussions                   = false
+    has_issues                        = true
+    has_projects                      = true
+    has_wiki                          = false
+    homepage                          = null
+    is_template                       = false
+    merge_commit_message              = "PR_TITLE"
+    merge_commit_title                = "MERGE_MESSAGE"
+    name                              = "org.eclipse.daanse.emf.dbmapping"
+    private                           = false
+    private_vulnerability_reporting_enabled = false
+    secret_scanning                   = "enabled"
+    secret_scanning_push_protection   = "enabled"
+    squash_merge_commit_message       = "COMMIT_MESSAGES"
+    squash_merge_commit_title         = "COMMIT_OR_PR_TITLE"
+    template_repository               = null
+    topics                            = []
+    web_commit_signoff_required       = true
+  }

+  add repo_workflow_settings[repository="org.eclipse.daanse.emf.dbmapping"] {
+    enabled                           = true
+  }

+  add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.emf.dbmapping"] {
+    name                              = "SONAR_ORGANIZATION"
+    value                             = "eclipse-daanse"
+  }

+  add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.emf.dbmapping"] {
+    name                              = "SONAR_PROJECT_KEY"
+    value                             = "eclipse-daanse_org.eclipse.daanse.emf.dbmapping"
+  }

+  add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.emf.dbmapping"] {
+    allows_deletions                  = false
+    allows_force_pushes               = false
+    blocks_creations                  = false
+    bypass_force_push_allowances      = []
+    bypass_pull_request_allowances    = []
+    dismisses_stale_reviews           = false
+    is_admin_enforced                 = false
+    lock_allows_fetch_and_merge       = false
+    lock_branch                       = false
+    pattern                           = "main"
+    require_last_push_approval        = false
+    required_approving_review_count   = "0"
+    required_status_checks            = [
+      "eclipse-eca-validation:eclipsefdn/eca"
+    ],
+    requires_code_owner_reviews       = false
+    requires_commit_signatures        = false
+    requires_conversation_resolution  = false
+    requires_deployments              = false
+    requires_linear_history           = true
+    requires_pull_request             = true
+    requires_status_checks            = true
+    requires_strict_status_checks     = true
+    restricts_pushes                  = false
+    restricts_review_dismissals       = false
+  }

+  add repository[name="org.eclipse.daanse.io.fs.watcher"] {
+    allow_auto_merge                  = false
+    allow_forking                     = true
+    allow_merge_commit                = false
+    allow_rebase_merge                = true
+    allow_squash_merge                = false
+    allow_update_branch               = false
+    archived                          = false
+    code_scanning_default_setup_enabled = false
+    default_branch                    = "main"
+    delete_branch_on_merge            = false
+    dependabot_alerts_enabled         = true
+    dependabot_security_updates_enabled = true
+    description                       = "Repository for the io watcher"
+    gh_pages_build_type               = "disabled"
+    has_discussions                   = false
+    has_issues                        = true
+    has_projects                      = true
+    has_wiki                          = false
+    homepage                          = null
+    is_template                       = false
+    merge_commit_message              = "PR_TITLE"
+    merge_commit_title                = "MERGE_MESSAGE"
+    name                              = "org.eclipse.daanse.io.fs.watcher"
+    private                           = false
+    private_vulnerability_reporting_enabled = false
+    secret_scanning                   = "enabled"
+    secret_scanning_push_protection   = "enabled"
+    squash_merge_commit_message       = "COMMIT_MESSAGES"
+    squash_merge_commit_title         = "COMMIT_OR_PR_TITLE"
+    template_repository               = null
+    topics                            = []
+    web_commit_signoff_required       = true
+  }

+  add repo_workflow_settings[repository="org.eclipse.daanse.io.fs.watcher"] {
+    enabled                           = true
+  }

+  add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.io.fs.watcher"] {
+    name                              = "SONAR_ORGANIZATION"
+    value                             = "eclipse-daanse"
+  }

+  add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.io.fs.watcher"] {
+    name                              = "SONAR_PROJECT_KEY"
+    value                             = "eclipse-daanse_org.eclipse.daanse.io.fs.watcher"
+  }

+  add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.io.fs.watcher"] {
+    allows_deletions                  = false
+    allows_force_pushes               = false
+    blocks_creations                  = false
+    bypass_force_push_allowances      = []
+    bypass_pull_request_allowances    = []
+    dismisses_stale_reviews           = false
+    is_admin_enforced                 = false
+    lock_allows_fetch_and_merge       = false
+    lock_branch                       = false
+    pattern                           = "main"
+    require_last_push_approval        = false
+    required_approving_review_count   = "0"
+    required_status_checks            = [
+      "eclipse-eca-validation:eclipsefdn/eca"
+    ],
+    requires_code_owner_reviews       = false
+    requires_commit_signatures        = false
+    requires_conversation_resolution  = false
+    requires_deployments              = false
+    requires_linear_history           = true
+    requires_pull_request             = true
+    requires_status_checks            = true
+    requires_strict_status_checks     = true
+    restricts_pushes                  = false
+    restricts_review_dismissals       = false
+  }

+  add repository[name="org.eclipse.daanse.jakarta.servlet"] {
+    allow_auto_merge                  = false
+    allow_forking                     = true
+    allow_merge_commit                = false
+    allow_rebase_merge                = true
+    allow_squash_merge                = false
+    allow_update_branch               = false
+    archived                          = false
+    code_scanning_default_setup_enabled = false
+    default_branch                    = "main"
+    delete_branch_on_merge            = false
+    dependabot_alerts_enabled         = true
+    dependabot_security_updates_enabled = true
+    description                       = "Repository for the jakarta servlet related modules"
+    gh_pages_build_type               = "disabled"
+    has_discussions                   = false
+    has_issues                        = true
+    has_projects                      = true
+    has_wiki                          = false
+    homepage                          = null
+    is_template                       = false
+    merge_commit_message              = "PR_TITLE"
+    merge_commit_title                = "MERGE_MESSAGE"
+    name                              = "org.eclipse.daanse.jakarta.servlet"
+    private                           = false
+    private_vulnerability_reporting_enabled = false
+    secret_scanning                   = "enabled"
+    secret_scanning_push_protection   = "enabled"
+    squash_merge_commit_message       = "COMMIT_MESSAGES"
+    squash_merge_commit_title         = "COMMIT_OR_PR_TITLE"
+    template_repository               = null
+    topics                            = []
+    web_commit_signoff_required       = true
+  }

+  add repo_workflow_settings[repository="org.eclipse.daanse.jakarta.servlet"] {
+    enabled                           = true
+  }

+  add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jakarta.servlet"] {
+    name                              = "SONAR_ORGANIZATION"
+    value                             = "eclipse-daanse"
+  }

+  add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jakarta.servlet"] {
+    name                              = "SONAR_PROJECT_KEY"
+    value                             = "eclipse-daanse_org.eclipse.daanse.jakarta.servlet"
+  }

+  add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jakarta.servlet"] {
+    allows_deletions                  = false
+    allows_force_pushes               = false
+    blocks_creations                  = false
+    bypass_force_push_allowances      = []
+    bypass_pull_request_allowances    = []
+    dismisses_stale_reviews           = false
+    is_admin_enforced                 = false
+    lock_allows_fetch_and_merge       = false
+    lock_branch                       = false
+    pattern                           = "main"
+    require_last_push_approval        = false
+    required_approving_review_count   = "0"
+    required_status_checks            = [
+      "eclipse-eca-validation:eclipsefdn/eca"
+    ],
+    requires_code_owner_reviews       = false
+    requires_commit_signatures        = false
+    requires_conversation_resolution  = false
+    requires_deployments              = false
+    requires_linear_history           = true
+    requires_pull_request             = true
+    requires_status_checks            = true
+    requires_strict_status_checks     = true
+    restricts_pushes                  = false
+    restricts_review_dismissals       = false
+  }

+  add repository[name="org.eclipse.daanse.jdbc.datasource.metatype.h2"] {
+    allow_auto_merge                  = false
+    allow_forking                     = true
+    allow_merge_commit                = false
+    allow_rebase_merge                = true
+    allow_squash_merge                = false
+    allow_update_branch               = false
+    archived                          = false
+    code_scanning_default_setup_enabled = false
+    default_branch                    = "main"
+    delete_branch_on_merge            = false
+    dependabot_alerts_enabled         = true
+    dependabot_security_updates_enabled = true
+    description                       = "Repository for the datasoure metatype support for h2"
+    gh_pages_build_type               = "disabled"
+    has_discussions                   = false
+    has_issues                        = true
+    has_projects                      = true
+    has_wiki                          = false
+    homepage                          = null
+    is_template                       = false
+    merge_commit_message              = "PR_TITLE"
+    merge_commit_title                = "MERGE_MESSAGE"
+    name                              = "org.eclipse.daanse.jdbc.datasource.metatype.h2"
+    private                           = false
+    private_vulnerability_reporting_enabled = false
+    secret_scanning                   = "enabled"
+    secret_scanning_push_protection   = "enabled"
+    squash_merge_commit_message       = "COMMIT_MESSAGES"
+    squash_merge_commit_title         = "COMMIT_OR_PR_TITLE"
+    template_repository               = null
+    topics                            = []
+    web_commit_signoff_required       = true
+  }

+  add repo_workflow_settings[repository="org.eclipse.daanse.jdbc.datasource.metatype.h2"] {
+    enabled                           = true
+  }

+  add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jdbc.datasource.metatype.h2"] {
+    name                              = "SONAR_ORGANIZATION"
+    value                             = "eclipse-daanse"
+  }

+  add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jdbc.datasource.metatype.h2"] {
+    name                              = "SONAR_PROJECT_KEY"
+    value                             = "eclipse-daanse_org.eclipse.daanse.jdbc.datasource.metatype.h2"
+  }

+  add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jdbc.datasource.metatype.h2"] {
+    allows_deletions                  = false
+    allows_force_pushes               = false
+    blocks_creations                  = false
+    bypass_force_push_allowances      = []
+    bypass_pull_request_allowances    = []
+    dismisses_stale_reviews           = false
+    is_admin_enforced                 = false
+    lock_allows_fetch_and_merge       = false
+    lock_branch                       = false
+    pattern                           = "main"
+    require_last_push_approval        = false
+    required_approving_review_count   = "0"
+    required_status_checks            = [
+      "eclipse-eca-validation:eclipsefdn/eca"
+    ],
+    requires_code_owner_reviews       = false
+    requires_commit_signatures        = false
+    requires_conversation_resolution  = false
+    requires_deployments              = false
+    requires_linear_history           = true
+    requires_pull_request             = true
+    requires_status_checks            = true
+    requires_strict_status_checks     = true
+    restricts_pushes                  = false
+    restricts_review_dismissals       = false
+  }

+  add repository[name="org.eclipse.daanse.jdbc.db"] {
+    allow_auto_merge                  = false
+    allow_forking                     = true
+    allow_merge_commit                = false
+    allow_rebase_merge                = true
+    allow_squash_merge                = false
+    allow_update_branch               = false
+    archived                          = false
+    code_scanning_default_setup_enabled = false
+    default_branch                    = "main"
+    delete_branch_on_merge            = false
+    dependabot_alerts_enabled         = true
+    dependabot_security_updates_enabled = true
+    description                       = "Repository for the jdbc related database utils"
+    gh_pages_build_type               = "disabled"
+    has_discussions                   = false
+    has_issues                        = true
+    has_projects                      = true
+    has_wiki                          = false
+    homepage                          = null
+    is_template                       = false
+    merge_commit_message              = "PR_TITLE"
+    merge_commit_title                = "MERGE_MESSAGE"
+    name                              = "org.eclipse.daanse.jdbc.db"
+    private                           = false
+    private_vulnerability_reporting_enabled = false
+    secret_scanning                   = "enabled"
+    secret_scanning_push_protection   = "enabled"
+    squash_merge_commit_message       = "COMMIT_MESSAGES"
+    squash_merge_commit_title         = "COMMIT_OR_PR_TITLE"
+    template_repository               = null
+    topics                            = []
+    web_commit_signoff_required       = true
+  }

+  add repo_workflow_settings[repository="org.eclipse.daanse.jdbc.db"] {
+    enabled                           = true
+  }

+  add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jdbc.db"] {
+    name                              = "SONAR_ORGANIZATION"
+    value                             = "eclipse-daanse"
+  }

+  add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jdbc.db"] {
+    name                              = "SONAR_PROJECT_KEY"
+    value                             = "eclipse-daanse_org.eclipse.daanse.jdbc.db"
+  }

+  add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jdbc.db"] {
+    allows_deletions                  = false
+    allows_force_pushes               = false
+    blocks_creations                  = false
+    bypass_force_push_allowances      = []
+    bypass_pull_request_allowances    = []
+    dismisses_stale_reviews           = false
+    is_admin_enforced                 = false
+    lock_allows_fetch_and_merge       = false
+    lock_branch                       = false
+    pattern                           = "main"
+    require_last_push_approval        = false
+    required_approving_review_count   = "0"
+    required_status_checks            = [
+      "eclipse-eca-validation:eclipsefdn/eca"
+    ],
+    requires_code_owner_reviews       = false
+    requires_commit_signatures        = false
+    requires_conversation_resolution  = false
+    requires_deployments              = false
+    requires_linear_history           = true
+    requires_pull_request             = true
+    requires_status_checks            = true
+    requires_strict_status_checks     = true
+    restricts_pushes                  = false
+    restricts_review_dismissals       = false
+  }

+  add repository[name="org.eclipse.daanse.jdbc.loader.csv"] {
+    allow_auto_merge                  = false
+    allow_forking                     = true
+    allow_merge_commit                = false
+    allow_rebase_merge                = true
+    allow_squash_merge                = false
+    allow_update_branch               = false
+    archived                          = false
+    code_scanning_default_setup_enabled = false
+    default_branch                    = "main"
+    delete_branch_on_merge            = false
+    dependabot_alerts_enabled         = true
+    dependabot_security_updates_enabled = true
+    description                       = "Repository for the jdbc dataloader from csv"
+    gh_pages_build_type               = "disabled"
+    has_discussions                   = false
+    has_issues                        = true
+    has_projects                      = true
+    has_wiki                          = false
+    homepage                          = null
+    is_template                       = false
+    merge_commit_message              = "PR_TITLE"
+    merge_commit_title                = "MERGE_MESSAGE"
+    name                              = "org.eclipse.daanse.jdbc.loader.csv"
+    private                           = false
+    private_vulnerability_reporting_enabled = false
+    secret_scanning                   = "enabled"
+    secret_scanning_push_protection   = "enabled"
+    squash_merge_commit_message       = "COMMIT_MESSAGES"
+    squash_merge_commit_title         = "COMMIT_OR_PR_TITLE"
+    template_repository               = null
+    topics                            = []
+    web_commit_signoff_required       = true
+  }

+  add repo_workflow_settings[repository="org.eclipse.daanse.jdbc.loader.csv"] {
+    enabled                           = true
+  }

+  add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jdbc.loader.csv"] {
+    name                              = "SONAR_ORGANIZATION"
+    value                             = "eclipse-daanse"
+  }

+  add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jdbc.loader.csv"] {
+    name                              = "SONAR_PROJECT_KEY"
+    value                             = "eclipse-daanse_org.eclipse.daanse.jdbc.loader.csv"
+  }

+  add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jdbc.loader.csv"] {
+    allows_deletions                  = false
+    allows_force_pushes               = false
+    blocks_creations                  = false
+    bypass_force_push_allowances      = []
+    bypass_pull_request_allowances    = []
+    dismisses_stale_reviews           = false
+    is_admin_enforced                 = false
+    lock_allows_fetch_and_merge       = false
+    lock_branch                       = false
+    pattern                           = "main"
+    require_last_push_approval        = false
+    required_approving_review_count   = "0"
+    required_status_checks            = [
+      "eclipse-eca-validation:eclipsefdn/eca"
+    ],
+    requires_code_owner_reviews       = false
+    requires_commit_signatures        = false
+    requires_conversation_resolution  = false
+    requires_deployments              = false
+    requires_linear_history           = true
+    requires_pull_request             = true
+    requires_status_checks            = true
+    requires_strict_status_checks     = true
+    restricts_pushes                  = false
+    restricts_review_dismissals       = false
+  }

+  add repository[name="org.eclipse.daanse.webconsole.branding"] {
+    allow_auto_merge                  = false
+    allow_forking                     = true
+    allow_merge_commit                = false
+    allow_rebase_merge                = true
+    allow_squash_merge                = false
+    allow_update_branch               = false
+    archived                          = false
+    code_scanning_default_setup_enabled = false
+    default_branch                    = "main"
+    delete_branch_on_merge            = false
+    dependabot_alerts_enabled         = true
+    dependabot_security_updates_enabled = true
+    description                       = "Repository for the webconsole branding"
+    gh_pages_build_type               = "disabled"
+    has_discussions                   = false
+    has_issues                        = true
+    has_projects                      = true
+    has_wiki                          = false
+    homepage                          = null
+    is_template                       = false
+    merge_commit_message              = "PR_TITLE"
+    merge_commit_title                = "MERGE_MESSAGE"
+    name                              = "org.eclipse.daanse.webconsole.branding"
+    private                           = false
+    private_vulnerability_reporting_enabled = false
+    secret_scanning                   = "enabled"
+    secret_scanning_push_protection   = "enabled"
+    squash_merge_commit_message       = "COMMIT_MESSAGES"
+    squash_merge_commit_title         = "COMMIT_OR_PR_TITLE"
+    template_repository               = null
+    topics                            = []
+    web_commit_signoff_required       = true
+  }

+  add repo_workflow_settings[repository="org.eclipse.daanse.webconsole.branding"] {
+    enabled                           = true
+  }

+  add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.webconsole.branding"] {
+    name                              = "SONAR_ORGANIZATION"
+    value                             = "eclipse-daanse"
+  }

+  add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.webconsole.branding"] {
+    name                              = "SONAR_PROJECT_KEY"
+    value                             = "eclipse-daanse_org.eclipse.daanse.webconsole.branding"
+  }

+  add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.webconsole.branding"] {
+    allows_deletions                  = false
+    allows_force_pushes               = false
+    blocks_creations                  = false
+    bypass_force_push_allowances      = []
+    bypass_pull_request_allowances    = []
+    dismisses_stale_reviews           = false
+    is_admin_enforced                 = false
+    lock_allows_fetch_and_merge       = false
+    lock_branch                       = false
+    pattern                           = "main"
+    require_last_push_approval        = false
+    required_approving_review_count   = "0"
+    required_status_checks            = [
+      "eclipse-eca-validation:eclipsefdn/eca"
+    ],
+    requires_code_owner_reviews       = false
+    requires_commit_signatures        = false
+    requires_conversation_resolution  = false
+    requires_deployments              = false
+    requires_linear_history           = true
+    requires_pull_request             = true
+    requires_status_checks            = true
+    requires_strict_status_checks     = true
+    restricts_pushes                  = false
+    restricts_review_dismissals       = false
+  }

  Applying changes:

╷
│ Error: failed to apply patch: ADD- repository[name="org.eclipse.daanse.jakarta.servlet"]
│
│    failed to update settings for repo 'org.eclipse.daanse.jakarta.servlet':
│    Exception while accessing https://api.github.com/repos/eclipse-daanse/org.eclipse.daanse.jakarta.servlet: (status=404, body={"message":"Not Found","documentation_url":"https://docs.github.com/rest/repos/repos#update-a-repository","status":"404"})
╵

╷
│ Error: failed to apply patch: ADD- repo_workflow_settings[repository="org.eclipse.daanse.jakarta.servlet"]
│
│    failed to update workflow settings for repo 'eclipse-daanse/org.eclipse.daanse.jakarta.servlet'
│    404: {"message":"Not Found","documentation_url":"https://docs.github.com/rest/actions/permissions#set-github-actions-permissions-for-a-repository","status":"404"}
╵

╷
│ Error: failed to apply patch: ADD- repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jakarta.servlet"]
│
│    failed to add repo variable 'SONAR_ORGANIZATION': {"message":"Not Found","documentation_url":"https://docs.github.com/rest/actions/variables#create-a-repository-variable","status":"404"}
╵

╷
│ Error: failed to apply patch: ADD- repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jakarta.servlet"]
│
│    failed to add repo variable 'SONAR_PROJECT_KEY': {"message":"Not Found","documentation_url":"https://docs.github.com/rest/actions/variables#create-a-repository-variable","status":"404"}
╵

╷
│ Error: failed to apply patch: ADD- branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jakarta.servlet"]
│
│    failed retrieving data for repo 'org.eclipse.daanse.jakarta.servlet':
│    Exception while accessing https://api.github.com/repos/eclipse-daanse/org.eclipse.daanse.jakarta.servlet: (status=404, body={"message":"Not Found","documentation_url":"https://docs.github.com/rest/repos/repos#get-a-repository","status":"404"})
╵

╷
│ Error: failed to apply patch: ADD- repository[name="org.eclipse.daanse.jdbc.datasource.metatype.h2"]
│
│    failed to update settings for repo 'org.eclipse.daanse.jdbc.datasource.metatype.h2':
│    Exception while accessing https://api.github.com/repos/eclipse-daanse/org.eclipse.daanse.jdbc.datasource.metatype.h2: (status=404, body={"message":"Not Found","documentation_url":"https://docs.github.com/rest/repos/repos#update-a-repository","status":"404"})
╵
  Done.

  Executed plan: 35 added, 0 changed, 0 deleted.

stbischof commented 4 months ago

@eclipse-daanse/eclipsefdn-releng @netomi

how to handle the errors?

netomi commented 4 months ago

let me check

netomi commented 4 months ago

applied the missing changes with the cli tool:

Organization technology.daanse[id=eclipse-daanse]
  there have been 15 validation infos, enable verbose output with '-v' to to display them.

  ~ repository[name="org.eclipse.daanse.jakarta.servlet"] {
    ~ dependabot_security_updates_enabled = false -> true
    ~ secret_scanning                   = "disabled" -> "enabled"
    ~ secret_scanning_push_protection   = "disabled" -> "enabled"
    ~ web_commit_signoff_required       = false -> true
  ~ }

  + add repo_variable[name="SONAR_ORGANIZATION", repository="org.eclipse.daanse.jakarta.servlet"] {
    + name                              = "SONAR_ORGANIZATION"
    + value                             = "eclipse-daanse"
  + }

  + add repo_variable[name="SONAR_PROJECT_KEY", repository="org.eclipse.daanse.jakarta.servlet"] {
    + name                              = "SONAR_PROJECT_KEY"
    + value                             = "eclipse-daanse_org.eclipse.daanse.jakarta.servlet"
  + }

  + add branch_protection_rule[pattern="main", repository="org.eclipse.daanse.jakarta.servlet"] {
    + allows_deletions                  = false
    + allows_force_pushes               = false
    + blocks_creations                  = false
    + bypass_force_push_allowances      = []
    + bypass_pull_request_allowances    = []
    + dismisses_stale_reviews           = false
    + is_admin_enforced                 = false
    + lock_allows_fetch_and_merge       = false
    + lock_branch                       = false
    + pattern                           = "main"
    + require_last_push_approval        = false
    + required_approving_review_count   = "0"
    + required_status_checks            = [
      + "eclipse-eca-validation:eclipsefdn/eca"
    + ],
    + requires_code_owner_reviews       = false
    + requires_commit_signatures        = false
    + requires_conversation_resolution  = false
    + requires_deployments              = false
    + requires_linear_history           = true
    + requires_pull_request             = true
    + requires_status_checks            = true
    + requires_strict_status_checks     = true
    + restricts_pushes                  = false
    + restricts_review_dismissals       = false
  + }

  ~ repository[name="org.eclipse.daanse.jdbc.datasource.metatype.h2"] {
    ~ dependabot_security_updates_enabled = false -> true
    ~ secret_scanning                   = "disabled" -> "enabled"
    ~ secret_scanning_push_protection   = "disabled" -> "enabled"
    ~ web_commit_signoff_required       = false -> true
  ~ }

  Do you want to perform these actions? (Only 'yes' or 'y' will be accepted to approve)

  Enter a value: y

  Applying changes:

  [####################################]  100%          
  Done.

  Executed plan: 3 added, 8 changed, 0 live resources ignored.

first time I see a problem like that, maybe the creation of a repo took a bit longer as usual and thus subsequent changes that relied on that repo failed. Will add there some additional check to wait till the repo has been created to prevent that from happening.

stbischof commented 4 months ago

I still do not have merge rights on the repos. My user is not assigned

netomi commented 4 months ago

it takes around 2-3 hours for the sync script to setup the permissions.

eclipse-daanse / .eclipsefdn

add repos - splitted from common #13