FEP repo rights

helge · December 10, 2024, 10:25am

Hi Folks.

This is about rights to configure

the fep repository at fediverse/fep: Fediverse Enhancement Proposals - Codeberg.org and
codeberg CI at Woodpecker

I currently have rights to neither settings. If I wanted to add something like Automate the create_readme script and issue creation, I would need these rights.

Do we have a process on who has these rights? On how to obtain them?

If yes, could we define one. Also could I have them? If yes, I would write the automation for the above step.

silverpill · December 10, 2024, 8:56pm

It’s informal. Initially only @aschrijver and @weex had those rights, now I have them too.

I added you to the administrators team. Can you access repository settings now?

helge · December 11, 2024, 10:09am

Thanks. I’ve now created:

This should automate most FEP facilitators tasks.

helge · December 20, 2024, 8:10am

cc @fep.hosts

Just so that everyone is informed.

helge · January 20, 2025, 11:26am

I’ve merged the pull request. Getting it to work was harder than expected. A bug in the configuration arose due to one needing the private key in CI ending in a new line.

helge · January 20, 2025, 12:24pm

Another thing, I just discovered

this means that currently, we need to approve the CI job if somebody submits a FEP. Is this the state we want?

Link to woodpecker settings: Woodpecker

silverpill · January 20, 2025, 5:06pm

Is manual approval required for every CI job, including on-push checks? In this is the case, I would prefer to not have it, because in my opinion automatic on-push checks have greater utility.

helge · January 21, 2025, 8:23am

I changed it to no permission for now.

If there are any effects, please comment here.

silverpill · January 21, 2025, 10:46am

No issues so far.

What are the consequences of changing it to no permission? The description says “This setting can be dangerous and is only recommended for private instances.” But what do they mean by “dangerous”?

helge · January 22, 2025, 6:39am

I didn’t research woodpecker’s thinking. However, my understanding is:

Woodpecker keeps secrets, e.g. the deploy key to update the FEP repo.
You can give pull request jobs access to secrets.
So people can access to these secrets using appropriate pull requests.

So as long as we limit access to secrets to jobs triggered by “push” and “tag”, we are fine.

silverpill · January 22, 2025, 9:14pm

I’ve just submitted a new FEP, everything is working as expected. Good job!

helge · February 7, 2025, 10:10am

Is there any objection to autogenerating the discussions link the issue? It should be available from the discussionsTo link in the FEP.

See #487 - [TRACKING] FEP-a974: All Actor types should be followable - fediverse/fep - Codeberg.org

silverpill · February 7, 2025, 3:44pm

No objections.

helge · February 8, 2025, 8:47am

how · May 13, 2025, 7:53am

Thank you @helge and @silverpill for making it a transparent collective process.

helge · September 21, 2025, 7:09am

In #22 - [TRACKING] FEP-1b12: Group federation - fediverse/fep - Codeberg.org, I commented about my desire for code blocks in FEPs having highlighting, e.g. using

```json
{
   "type": "AnimalSound"
}
```

instead of the option without json.

We could automate this type of checks with a markdown linter.

leads to about 2000 errors, which could be reduced by automatic fixing and disabling some rules to about 160.

Should we work towards enforcing such a concept of linting?

silverpill · September 23, 2025, 2:38pm

No, linter shouldn’t block proposals.

Optional linting is fine.