Repository / package admin tasks #338
Comments
|
@broofa what's the status on this? I was trying to set up browserstack-based testing through Travis.ci but it seems that I'm lacking permissions. Maybe I need to get admin permissions on this repo in order to do this? Would be great to get this solved so I can move forward with the modernization of this library. |
|
'Promoted you to 'admin' here. See if that fixes the problem. |
|
@defunctzombie how about 2FA for the kelektiv org? Could you also help me understand what the kelektiv org is and who the members are? |
|
@ctavan @broofa require 2fa is not currently enabled. Would you like me to enable it? When I enabled it everyone in the organization must have 2fa on their account or they will be removed from the organization. @ctavan kelektiv was created by @ncb000gt as a way of grouping a few commonly maintained and popular modules under an organization rather than a single personal account. Organizations make it easier to manage users as folks come and go. If there is a better organization to group these under I certainly would not object. |
|
It looks like the kelektiv org consists of just the three of us, right? So... yeah unless either of you two have a reason not to, let's turn on 2FA. I know it's not required, but it's the responsible thing to do. Regarding what kelektiv is and what the right home for |
|
+1 for 2FA Regarding the org: thanks for the clarification! I did not mean to question whether the current org was a good place for this library, I was just curious. The only thing that confused me a bit was that the member list of the kelektiv org does not seem to be public. Especially for security related OpenSource projects I would personally prefer to see more transparency in the orgs that effectively control the source code. @defunctzombie @broofa would it be an option to make the kelektiv member list public as a quick win? In addition to that I‘m with @broofa in that I find it interesting to reconsider what org would be suitable for very long lived libraries where the set of active maintainers changes over time. I don’t believe that this is an urgent question though. |
|
+1 for making org membership public |
|
@defunctzombie is correct. I had a baby on the way, my second, at the time with a bunch of other obligations and management of the different projects was getting tougher from my personal account. So I looked at moving bcrypt and cron to other projects but it was clear that wasn't going to work out. Thus, kelektiv was born. I agree with the points about transparency in oss. And, that security should be a top concern. I'm ok with making the member list public and with 2fa so long as everyone else is. Thanks for bringing this up. |
|
OK, I think we have votes for: 2FA: @broofa @defunctzombie @ncb000gt @ctavan ✅ As I have no visibility (yet) into the current member list, could one of you check, if there are additional members that need to be asked? @defunctzombie fine with public membership as well? |
|
@defunctzombie I'm aware that org admins can specify org visibility for each member separately however I haven't found a way how I could control that on my own for orgs where I'm member but not admin. Where would I change that visibility? If it turns out not to be possible for group members to control that on their own could you adjust the corresponding settings in the org for all of us? |
|
@ctavan Each user must manage their own visibility. See this guide https://help.github.com/en/github/setting-up-and-managing-your-github-user-account/publicizing-or-hiding-organization-membership |
|
Oh ok, so does that mean I'm not a member of the org at the moment?
|
|
I've updated my 2fa (had turned off to test some things) and made my
membership public.
Thanks for the reminder.
…On Sun, Dec 8, 2019, 2:14 PM Christoph Tavan ***@***.***> wrote:
Oh ok, so does that mean I'm not a member of the org at the moment?
[image: Screenshot 2019-12-08 20 13 51]
<https://user-images.githubusercontent.com/508118/70394650-4dbbef00-19f7-11ea-8187-063068ed168c.png>
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#338>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AAAPJFZVDLCZQOERQUVV6ZDQXVBRRANCNFSM4JCNOIPQ>
.
|
|
@defunctzombie Looks like ctavan isn't in the kelektiv org. Can you add him? |
|
@defunctzombie friendly ping? |
|
@defunctzombie @ncb000gt @broofa: Given that there does not really seem to be an intersection of active maintainers of I would see several benefits:
I have to admit that right now it doesn't really feel super productive for me to take your resources for repository admin tasks of a repo that you otherwise don't really maintain any more. As a name I could imagine something like https://github.com/uuidjs What do you think? |
|
I'd be fine with that. 'Totally understand your feelings re: productivity. |
|
I personally think it is fine adding folks as collaborators on repos rather than entire org but I also do not care either way where this lives hosting wise. Tell me what you all want me to do and I will do it. |
|
I have created a new org on github and I intend to transfer ownership of this repo into the org: https://github.com/uuidjs The new home of this repo will be: https://github.com/uuidjs/uuid I'll wait for objections for another 3 days 😉 @defunctzombie @broofa I have invited both of you to the new organization and will give you |
|
@ctavan Sounds good, thank you! Quick sanity check questions:
|
|
I exchanged a few DMs with @bcoe on this: He told me that he moved two of his former personal projects into dedicated orgs (namely https://github.com/yargs and https://github.com/istanbuljs) and was happy with the move. I have done the same a few years back with https://github.com/express-validator/express-validator (it's also a single-purpose org) when somebody else became the primary maintainer of the module, and it worked out well. I don't really see any drawbacks with having a dedicated single-purpose org for one module. Obvious additional repos could be documentation (github pages, even though the README will likely be fine forever in the case of UUID) and other UUID-related things, but I would not want to make any assumptions on that right now. |
|
Sounds good. In terms of logistics are there any considerations that would prevent simply transferring this repo to the new org? Seems like the simplest approach. @defunctzombie @ctavan |
|
I think we should do exactly this: Transfer the repo to the new org. All relevant things should remain intact and github will set up redirects from the old repo URL (so we should make sure NOT to create a repo named https://github.com/kelektiv/node-uuid later!). |
|
@broofa are you 👍 on the transfer to the new org? |
|
@defunctzombie Yup. I'm in the new org, so @ctavan and I can take it from here. |
|
The repository transfer is complete. |
|
I‘m currently home sick with a flu but will make sure to adjust repo URL’s etc in the package.json as quickly as possible. Thanks for your help! |
|
@defunctzombie Hey, I know nothing much is changing with this and I look forward to your continued involvement here in whatever form that takes, but this sort of thing is as significant an event as we opensource folks seem to get. So let me just take this opportunity to say I appreciate all the work you've done for this project over the years. Thanks, man! @ctavan And thanks to you as well for setting up the new repo and moving things forward! Also, I hope you feel better soon. |
|
Glad you were all able to figure something out that works for your project. :) As a note, I haven't had any issues with transferring personal projects into orgs, that's what I did with bcrypt and cron. |
|
Thanks everyone for your support! |
Capturing some housekeeping tasks for project owners:
The text was updated successfully, but these errors were encountered: