content: schema are informative, spec text is canonical #892
Conversation
✅ Deploy Preview for slsa ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
joshuagl
changed the title
joshuagl
changed the title
|
Is this an |
Great question. I think it's worth handling as spec-content, so that we can be sure of consensus and approval. The specification does not change in content IFF you agree with these changes (that the text are authoritative), so it's worth being sure that 2 other approvers agree :-D |
joshuagl
changed the title
MarkLodato
changed the title
Good point. How about we require a changelog entry for every If so, then might want to consider every |
|
Yes, I think having a patch release would make sense. |
|
I like the idea of rolling a patch release for this (and a few other in-flight changes, see #900). Are we treating the what's new? page as the changelog, with a new version of the page for each release? |
|
I think that would make sense. |
|
Friendly ping. Is this going in v1.0 or v1.1? The latter now exists as of #942 FYI. |
joshuagl
force-pushed
the
joshuagl/annotations
branch
from
c1e8018 to
87b5c51
Compare
|
Consensus was for this to target v1.1. I've updated the PR to make the changes against the v1.1 folder. |
|
Reviewing the conversation here, I still need to update "what's new" for this content change |
The text are the authorative specification, the schema (protobuf and cue) are intended to be pedagogical aids but do not invalidate or supercede what is written in the specification text. Signed-off-by: Joshua Lock <joshua.lock@uk.verizon.com>
Signed-off-by: Joshua Lock <joshuagloe@gmail.com>
joshuagl
force-pushed
the
joshuagl/annotations
branch
from
87b5c51 to
4433f74
Compare
|
I've added a very minimal "What's new" page for v1.1 which describes this change: https://deploy-preview-892--slsa.netlify.app/spec/v1.1/whats-new |
Signed-off-by: Joshua Lock <joshuagloe@gmail.com>
As discussed in the conversation for PR slsa-framework#892, specifically: slsa-framework#892 (comment) we should treat the What's New page as a Changelog and require that all content changes to the specification have a corresponding entry. Update "Contributing to SLSA" to capture this requirement. Signed-off-by: Joshua Lock <joshuagloe@gmail.com>
As discussed in the conversation for PR #892, specifically: #892 (comment) we should treat the "What's New" page as a Changelog and require that all content changes to the specification have a corresponding entry. Update "Contributing to SLSA" to capture this requirement. Signed-off-by: Joshua Lock <joshuagloe@gmail.com>
As discussed in the 2023-06-05 spec meeting clarify the format of ResourceDescriptor and make clear that the schema are only informative, with the specification text (whether our text or the linked in-toto/attestation spec) being the canonical definition.
Fixes: #875