Governance Meeting, April 3, 2023

Community
,
1

2023-04-03T17:00:00Z

April 3, 2023

Participants: Mark Waite, Basil Crow, Alexander Brandes, Ullrich Hafner, Bruno Verachten, OIeg Nenashev, Daniel Beck

Agenda:

  • Claim from BMC to GitHub Trust and Safety (update center PR 692)

    • Claim rescinded, licenses corrected, distribution of plugins restored, special thanks to Daniel Beck

  • News

    • Jenkins 2.387.2 and 2.398
    • PGP repository signing key expired March 30, 2023 for deb and rpm packages, new key for 2.397 and 2.387.2
      • Announced in

  • Jenkins blog including its RSS feed

  • Jenkins LinkedIn account

  • Jenkins twitter account

  • Jenkins weekly changelog and its RSS feed

  • Top level Jenkins page has a rotating announcement that links to the blog post

  • Gitter chat channel

  • Yes, we’ll have a retrospective afterwards to better handle signing key updates

    • See suggestions in the help desk ticket

  • Oleg’s change of affiliation. Now WireMock Inc.

    • No impact on availability, it is defined by other things like war in Ukraine and the separation process

  • Action Items

    • EasyCLA to be documented by Oleg
      • No progress, no requests pending, pick it up if there are CLA submissions
    • Mark Waite submit jenkins.io pull request to combine subprojects and SIGs into a single concept - “working groups”
      • No progress, Mark to complete
      • Roadmap update pull requests, make it current for April 12 CDF TOC presentation
    • Retire the Chinese Jenkins site
      • Chinese site link removed from www.jenkins.io header
      • Rick recommends that we redirect the chinese pages to English equivalents
      • Kevin Martens (Docs Officer) tracking help desk ticket to replace the Chinese pages with redirects to the English pages
    • Mark Waite archive the governance meeting notes to a GitHub repository, use the Google doc as the working document, then publish final notes
      • Gavin has prepared the archive, need a destination repository
      • See the infra help desk ticket tracking the discussion
      • Alexander Brandes has something in mind on how to structure things.
      • Infra team raised about the repository location as a question
      • Oleg prefers jenkinsci rather than jenkins-infra for a governance repository (this is not about the archive repository!)
        • Mark check the infra team preference, discuss if not jenkinsci
    • Build monitor status plugin update - Basil Crow
      • Jan Molek’s request to maintain the link to his blog inside the plugin
      • Repository is now in the GitHub organization
      • Release process is using the standard CD process (JEP-229)
      • Front end contributors improved the plugin website so that the older versions would be at the bottom of the list, new versions at the top
      • Looks and feels like a full member of the Jenkins project

  • CDF topics

    • Digicert code signing certificate renewal in progress
      • Proposed to stop building Jenkins MSI installer until new code signing certificate is available and configured
        • Mark Waite sent note to Jenkins officers today with the proposal, approved by release officer, security officer, and infra officer
        • PR-356 in the release repository, backport to stable-2.387 will be needed
        • PR-384 in the packaging repository, backport to stable-2.387 may not be needed in PR-356 in release repo works as hoped in weekly
    • PGP key expired on the Debian repository
      • Debian allows re-signing of old releases with a new key
      • Debian allows signing of packages with multiple keys
      • Very painful to the users that we did not handle the transition well
      • Better to acknowledge that it could be done differently and that there are ways to improve in the future
      • Prefer clarity on our weaknesses, openly state the mistakes made
    • Jenkins project presentation to the CDF Technical Oversight Committee April 11, 2023
      • Mark Waite prepare and present Jenkins status report
        • Mark create presentation, share it with this group, invite comments, corrections
        • Last TOC confirmed that they are OK with a project review that looks at participation in addition to technical topics
    • LFX Tools working group starting based on last CDF TOC meeting
    • Jenkins awards voting is complete, results provided to CDF
      • Announcement not yet made, may happen at cdCon

  • Community activity

    • Artifactory bandwidth reduction project https://repo.jenkins-ci.org
    • Google Summer of Code 2023
      • 38 proposals submitted to Google Summer of Code
      • April 4, 2023 is submission deadline for contributor proposals
    • Launchable experiments running in Jenkins BOM and elsewhere
      • Defining test suites
      • Defining builds
      • Benefits to developers
        • Reduce cost of BOM builds
        • Reduce number of Windows tests in Jenkins core
        • Run ATH subsets as part of core builds
          • Reduce ATH costs by running a subset of tests
      • Launchable support is providing feedback as well