guix.git - Mirror of the official guix repository

Age	Commit message (Collapse)	Author
2024-05-25	maint: Suggest ‘guix git authenticate’ for initial authentication.	Ludovic Courtès
	The previous recommendation, running ‘make authenticate’, was insecure because it led users to run code from the very repository they want to authenticate: https://lists.gnu.org/archive/html/guix-devel/2024-04/msg00252.html * Makefile.am (commit_v1_0_0, channel_intro_commit) (channel_intro_signer, GUIX_GIT_KEYRING, authenticate): Remove. * Makefile.am (.git/hooks/%): New target, generalization of previous ‘.git/hooks/pre-push’ target. (nodist_noinst_DATA): Add ‘.git/hooks/post-merge’. * doc/contributing.texi (Building from Git): Suggest ‘guix git authenticate’ instead of ‘make authenticate’. * etc/git/post-merge: New file. * etc/git/pre-push: Run ‘guix git authenticate’ instead of ‘make authenticate’. Reviewed-by: Maxim Cournoyer <maxim.cournoyer@gmail.com> Reported-by: Skyler Ferris <skyvine@protonmail.com> Change-Id: Ia415aa8375013d0dd095e891116f6ce841d93efd
2020-12-14	maint: Only run `make authenticate` when pushing commits.	Leo Famulari
	* etc/git/pre-push: Exit early when deleting a branch.
2020-06-01	maint: Adjust comment in 'pre-push' hook.	Ludovic Courtès
	* etc/git/pre-push: Adjust comment.
2020-05-29	maint: Git pre-push hook runs "make authenticate check-channel-news".	Ludovic Courtès
	* etc/git/pre-push: Change to run "make authenticate check-channel-news".
2017-02-08	etc: The pre-push hook says which commits failed the signature check.	Leo Famulari
	* etc/git/pre-push: Check each commit's signature individually so that we can report which commits fail the check.
2017-01-04	doc: Add a Git hook that verifies signatures before pushing.	Leo Famulari
	* HACKING (Commit Access): Describe the pre-push Git hook. * etc/git/pre-push: New file.