guix/etc/git/pre-push, branch koszko Wojtek's customized Guix https://git.koszko.org/guix/atom?h=koszko 2025-02-15T23:20:13Z maint: Actually run ‘make check-channel-news’ in pre-push hook. 2025-02-15T23:20:13Z Ludovic Courtès ludo@gnu.org 2025-02-15T23:20:13Z urn:sha1:1afbf48b250f667ce45de40a6c275e3e42ade67c Fixes a bug introduced in ab9cda9ebd00073d5a0783919809f2e564f141e9 where ‘make check-channel-news’ would not longer be executed. * etc/git/pre-push: Remove ‘exec’ before ‘guix git authenticate’. Change-Id: Ic425db866e44695493be96a0a8c81c77c815e42d etc: git: pre-push: Run guix git authenticate before check-channel-news. 2025-01-05T21:23:54Z Vagrant Cascadian vagrant@debian.org 2024-12-09T20:21:30Z urn:sha1:ab9cda9ebd00073d5a0783919809f2e564f141e9 Running check-channel-news first could potentially be untrusted code, so authenticate first. * etc/git/pre-push: Run guix git authenticate before check-channel-news. maint: Suggest ‘guix git authenticate’ for initial authentication. 2024-05-25T14:23:56Z Ludovic Courtès ludo@gnu.org 2024-05-07T13:54:44Z urn:sha1:73b3f941d7d911a1b2bb2bf77d37cb3a12ed4291 The previous recommendation, running ‘make authenticate’, was insecure because it led users to run code from the very repository they want to authenticate: https://lists.gnu.org/archive/html/guix-devel/2024-04/msg00252.html * Makefile.am (commit_v1_0_0, channel_intro_commit) (channel_intro_signer, GUIX_GIT_KEYRING, authenticate): Remove. * Makefile.am (.git/hooks/%): New target, generalization of previous ‘.git/hooks/pre-push’ target. (nodist_noinst_DATA): Add ‘.git/hooks/post-merge’. * doc/contributing.texi (Building from Git): Suggest ‘guix git authenticate’ instead of ‘make authenticate’. * etc/git/post-merge: New file. * etc/git/pre-push: Run ‘guix git authenticate’ instead of ‘make authenticate’. Reviewed-by: Maxim Cournoyer <maxim.cournoyer@gmail.com> Reported-by: Skyler Ferris <skyvine@protonmail.com> Change-Id: Ia415aa8375013d0dd095e891116f6ce841d93efd maint: Only run `make authenticate` when pushing commits. 2020-12-14T17:15:06Z Leo Famulari leo@famulari.name 2020-08-14T20:30:47Z urn:sha1:80ebcdd100a82fdc582e62f35042c74ce38ea753 * etc/git/pre-push: Exit early when deleting a branch. maint: Adjust comment in 'pre-push' hook. 2020-05-31T22:51:38Z Ludovic Courtès ludo@gnu.org 2020-05-30T14:36:59Z urn:sha1:6f6758c45d3913dbf98bb8e50f21f7bfb25b40ea * etc/git/pre-push: Adjust comment. maint: Git pre-push hook runs "make authenticate check-channel-news". 2020-05-29T16:31:38Z Ludovic Courtès ludo@gnu.org 2020-05-29T16:19:07Z urn:sha1:e65a44649e8d7698c4a888f1de625a67052520e9 * etc/git/pre-push: Change to run "make authenticate check-channel-news". etc: The pre-push hook says which commits failed the signature check. 2017-02-08T02:42:08Z Leo Famulari leo@famulari.name 2017-01-23T05:57:46Z urn:sha1:f0d0c5bb188455e0b82ee3089ba103ef71877c87 * etc/git/pre-push: Check each commit's signature individually so that we can report which commits fail the check. doc: Add a Git hook that verifies signatures before pushing. 2017-01-04T21:27:20Z Leo Famulari leo@famulari.name 2017-01-03T06:19:25Z urn:sha1:69355e1283d300a663fb639ec426f10f3feb404b * HACKING (Commit Access): Describe the pre-push Git hook. * etc/git/pre-push: New file.