This PR also arises an important question: in such cases where we found a vulnerability and want to patch it, shouldn't we release a `v0.1.1` rapidly to patch the vulnerability on the real website or should we wait for `v0.2.0`.
In the case we want to release v0.1.1 should we:
A: merge this PR in main and release previously merged PRs (from v0.1.0) with it
B: merge on a specific branch (let's say released) which is based on v0.1.0 and then merge release into main?
Following git log --oneline ... format:
A:
* (main, v0.1.1) this PR
* commit
* commit
* (v0.1.0) Bump to version 0.1.0
B:
* (main) Merged with `released`
|\
* | commit
* | commit
| * (released, v0.1.1) this PR
|/
* (v0.1.0) Bump to version 0.1.0
In the case we want to release
v0.1.1
should we:main
and release previously merged PRs (fromv0.1.0
) with itreleased
) which is based onv0.1.0
and then mergerelease
intomain
?Following
git log --oneline ...
format: A:B:
Originally posted by @ctmbl in https://github.com/iScsc/iscsc.fr/issues/51#issuecomment-1327972479