Closed tstellar closed 3 years ago
FYI I do not have read permission for this link (and I think it is right).
The github has two level permission model (org, repo) and people can be organized as teams. Buildbots should not have write/push permission for modifying repo.
Is the "build status" on GitHub commits requiring some level of write permissions?
@tstellar what is "Sourcerer"? Is it https://sourcerer.io/ ?
@tstellar what is "Sourcerer"? Is it https://sourcerer.io/ ?
Yes, that's it.
My proposal:
For the policy I would propose:
Footnote: Sourcerer.io seems to be collecting user data without user consent. I am not sure if this is in line with GDPR.
@tstellar what is "Sourcerer"? Is it https://sourcerer.io/ ?
Yes, that's it.
Here's an example page of a user profile on sourcerer.io (found via Google search): https://sourcerer.io/josh-payne
FYI: I added integration to LLVM buildbots, so they will report the status of revisions there.
I've removed sourcerer.io from the list of third-party apps, so now all that are left are buildbot and buildkite, which are fine.
How do you want to proceed with the general guidelines for this? Where do you want to document them?
next step: @ChristianKuehnel create a proposal for a document in the llvm-project, send it to mailing list for review.
stale effort, removing from our backlog
I created a proposal for such a policy: https://reviews.llvm.org/D111723
We have the following third-party applications approved to access the llvm organization:
https://github.com/organizations/llvm/settings/oauth_application_policy
We should review this and decide what are still needed and create guidelines for granting access.