Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enhancing Repository Management and Security Update Process #33

Open
Validatus opened this issue Jan 19, 2025 · 3 comments
Open

Enhancing Repository Management and Security Update Process #33

Validatus opened this issue Jan 19, 2025 · 3 comments
Assignees
@fabriziosalmi
Labels
enhancement New feature or request

Comments

@Validatus
Copy link

First of all, really great work here Fabrizio. Thank you very much for that!

We've noticed that this repository currently does not have any release tags. Adding release tags would be highly beneficial for the following reasons as you know yourself:

  1. Versioning
  2. Change Logs
  3. Dependency Management
  4. Improved Update Process

Additional Considerations for Production Use:

We're considering implementing an auto-update mechanism for the module in our production environment, particularly for security-related issues. Here are some points we'd like to address:

  1. Automated Release Monitoring: We plan to automatically watch for new release tags.

  2. Configuration Compatibility: We've noticed that configurations have changed over time. Is backward compatibility maintained between releases? If not, could this be considered for future releases?

  3. Update Process: We're thinking of implementing the following:

    • Automated update triggering for 'security releases'
    • Pre-update configuration compatibility checks
    • Gradual rollout strategy
    • Rollback mechanism in case of issues

  4. Documentation: Could you provide more detailed information about:

    • Your approach to backward compatibility
    • Any specific considerations for production use of the module
    • Recommended update practices

The module's usability in production environments we think is crucial. We appreciate your work on this module and look forward to your thoughts....
We are here to help with any testing you need. Please only let us know and we are very happy to get hands on...
@fabriziosalmi
Copy link
Owner

fabriziosalmi commented Jan 19, 2025
edited
Loading

Helo and good morning dear!

I still did not released tags because I would like to bring it to the first tag release with tests and regressions aware pipelines.

My usual flow is to mantain backward compatibility as much as possible but of course, sometimes is not possible.

I will follow your solid suggestions and hopefully i will share it as discussion then the project itself can be improved to acceptable standards ❤️

@fabriziosalmi fabriziosalmi self-assigned this Jan 19, 2025
@Validatus
Copy link
Author

I still did not released tags because I would like to bring it to the first tag release with tests and regressions aware pipelines.

That is great to know. So let's be patient and in the meantime, we are keeping testing along with you ;-).

@fabriziosalmi fabriziosalmi added documentation Improvements or additions to documentation enhancement New feature or request and removed documentation Improvements or additions to documentation labels Jan 19, 2025
@fabriziosalmi
Copy link
Owner

https://github.com/fabriziosalmi/caddy-waf/discussions here the roadmap to v0.0.1 🙏

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@fabriziosalmi fabriziosalmi

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@fabriziosalmi @Validatus