You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@mesos.apache.org by "Armand Grillet (JIRA)" <ji...@apache.org> on 2017/09/06 12:38:00 UTC
[jira] [Commented] (MESOS-7802) Push-commits.py support script is
too lenient when determining reviews to close
[ https://issues.apache.org/jira/browse/MESOS-7802?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16155289#comment-16155289 ]
Armand Grillet commented on MESOS-7802:
---------------------------------------
Shall the script only push the commit / close the last review it reads (using the URL) in the commit message then?
> Push-commits.py support script is too lenient when determining reviews to close
> -------------------------------------------------------------------------------
>
> Key: MESOS-7802
> URL: https://issues.apache.org/jira/browse/MESOS-7802
> Project: Mesos
> Issue Type: Bug
> Reporter: Joseph Wu
> Priority: Minor
> Labels: mesosphere, newbie
>
> The support script {{support/push-commits.py}} can be used by committers to push commits and simultaneously close reviews. However, it is currently quite easy to trick the script into closing unrelated reviews.
> For example, if you have a commit message like:
> {code}
> Referring to multiple reviews in one commit message.
>
> Review: https://reviews.apache.org/r/1/
> Review: https://reviews.apache.org/r/2/
> Review: https://reviews.apache.org/r/3/
> Review: https://reviews.apache.org/r/4/
> {code}
> The script will do this:
> {code}
> $ support/push-commits.py --dry-run
> Found reviews ['1', '2', '3', '4']
> Pushing commits to apache
> Closing review 1
> Closing review 2
> Closing review 3
> Closing review 4
> {code}
> It is possible for this to happen non-maliciously, if the contributor's review description merely refers to another review in the same format.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)