From 11c18141461d21a99815fb69eef61ca526c6d140 Mon Sep 17 00:00:00 2001 From: chouseknecht Date: Fri, 4 Mar 2016 08:08:04 -0500 Subject: [PATCH] 14604 - Adding suggested comments related to securing Galaxy role versions --- docs/proposals/auto-install-roles.md | 1 + 1 file changed, 1 insertion(+) diff --git a/docs/proposals/auto-install-roles.md b/docs/proposals/auto-install-roles.md index b63349bb30..9fb17fc2b1 100644 --- a/docs/proposals/auto-install-roles.md +++ b/docs/proposals/auto-install-roles.md @@ -125,6 +125,7 @@ Here's the approach: 'name': 'repo’ } ``` +- For roles installed from Galaxy, Galaxy should provide some measure of security against version change. Galaxy should track the commit related to a version. If the role owner changes historical versions (today tags) and thus changes the commit hash, the affected version would become un-installable. - Refactor the install process to encompass the following :