Re: Automatic testing of patches in commit fest

From: Andres Freund <andres(at)anarazel(dot)de>
To: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc: Alvaro Herrera <alvherre(at)alvh(dot)no-ip(dot)org>, Aleksander Alekseev <a(dot)alekseev(at)postgrespro(dot)ru>, Tomas Vondra <tomas(dot)vondra(at)2ndquadrant(dot)com>, Michael Paquier <michael(dot)paquier(at)gmail(dot)com>, PostgreSQL mailing lists <pgsql-hackers(at)postgresql(dot)org>, Thomas Munro <thomas(dot)munro(at)enterprisedb(dot)com>
Subject: Re: Automatic testing of patches in commit fest
Date: 2017-09-12 15:54:22
Views: Raw Message | Whole Thread | Download mbox | Resend email
Lists: pgsql-hackers


On 2017-09-12 11:30:33 -0400, Tom Lane wrote:
> One thing I'm a tad worried about is automatically running trojan-horsed
> submissions. I hope the CI bot is tightly sandboxed.

Well, that's part of the nice thing here. The "really dangerous stuff"
is all running on a service that does so full-time, not on our
resources. Everyone can open git repos and open malicious PRs in them -
travis checks a *lot* of projects... That's not to say your worries
are unfounded, just that they're not primarily ours. Although even the
patch file handling etc, seems worthy of a good bit of attention.


Andres Freund

In response to

Browse pgsql-hackers by date

  From Date Subject
Next Message Aleksander Alekseev 2017-09-12 16:03:15 Re: WIP patch: distinguish selectivity of < from <= and > from >=
Previous Message Sokolov Yura 2017-09-12 15:49:01 Re: Small improvement to compactify_tuples