Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Proposal: Toggle to disable any/all insecure features in the build scripts #4074

Open
1 of 4 tasks
adamfarley opened this issue Dec 4, 2024 · 1 comment
Open
1 of 4 tasks

Feature Proposal: Toggle to disable any/all insecure features in the build scripts #4074

adamfarley opened this issue Dec 4, 2024 · 1 comment
Assignees
@adamfarley
Labels
enhancement Issues that enhance the code or documentation of the repo in any way

Comments

@adamfarley
Copy link
Contributor

adamfarley commented Dec 4, 2024
edited
Loading

Summary

An argument or flag that causes the build scripts to deliberately disable functionality considered to potentially risk build security.

Why do we have insecure features?

Reasons include:

  • User convenience
  • Code resilience
  • Insecurity is presumed to be mitigated by code-external factors.

Purpose of this Issue

  • 1) To establish the mechanism for triggering the inhibition of said functionality.
  • 2) To unify file downloads (in the build process) through a single part of the code base.
  • 3) To make 1 inhibit 2.
  • 4) To raise a separate issue to discuss further ways we could expand the range of build script behaviours inhibited by 1.
@adamfarley adamfarley added the enhancement Issues that enhance the code or documentation of the repo in any way label Dec 4, 2024
@adamfarley adamfarley self-assigned this Dec 4, 2024
@adamfarley adamfarley changed the title Feature Proposal: A feature that prevents the build scripts from behaving insecurely Feature Proposal: Toggle to disable any/all insecure features in the build scripts Dec 4, 2024
@adamfarley adamfarley mentioned this issue Dec 4, 2024
Draft
@adamfarley adamfarley linked a pull request Dec 4, 2024 that will close this issue
WIP: Adding secure mode option to build scripting #4076
Draft
@adamfarley adamfarley removed a link to a pull request Dec 4, 2024
WIP: Adding secure mode option to build scripting #4076
Draft
@adamfarley
Copy link
Contributor Author

My progress can be tracked in the commit messages here: #4076

@adamfarley adamfarley moved this to In Progress in 2024 4Q Adoptium Plan Dec 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@adamfarley adamfarley

Labels
enhancement Issues that enhance the code or documentation of the repo in any way
Projects
2024 4Q Adoptium Plan
Status: In Progress
Milestone
No milestone
Development

No branches or pull requests
1 participant
@adamfarley