| Hi,
We recently changed the publishing workflow ( #2164, #2183, .eclipsefdn#6) toward a higher security standard. Committers now get emails when the Publish workflow is triggered, leading to an approval page like this (I already cancelled this one):
The trigger is a change to any package.json file. The reasoning is that publishing happens after an increase of a version number of our packages. However, other package.json changes such as dependency updates trigger the workflow, too.
When you notice a Publish workflow run that is not necessary, feel free to cancel it. Nothing bad happens if somebody approves it, as the workflow only publishes when there’s actually a new version number in one or more of our packages.
This creates a bit more noise in our inboxes, but the positive side of it is that potential publishing runs are more transparent across the dev team.
Regards
-- Dr. Miro Spönemann Co-CEO / Software Architect
TypeFox GmbH Am Germaniahafen 1, 24143 Kiel https://www.typefox.io
Commercial Register: Amtsgericht Kiel, HRB 17385 Managing Directors: Daniel Dietrich, Dr. Miro Spönemann
|