Continuous integration with buildbot
Georg Faerber
georg at riseup.net
Wed Oct 11 10:11:48 AEDT 2017
Hi,
On 17-10-06 17:43:13, Stephen Finucane wrote:
> On Fri, 2017-10-06 at 13:36 +0200, David Demelier wrote:
> > 2. I should also check how to make buildbot as secure as possible
> > since tests can be ran with insecure code sent via mails.
>
> The best practices I see (in the OpenStack community) is to run
> everything in isolated containers or VMs that are created afresh for
> every build and wiped post build, saving only some build artifacts
> (logs etc.). This would probably mean using "slave" machines, if
> buildbot offers such a system. However, I'm no expert here so Google
> might be your friend.
+1
> > Any advices are welcome,
>
> I'd love to see any progress you make with this.
As do I.
Good luck & cheers,
Georg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Digital signature
URL: <http://lists.ozlabs.org/pipermail/patchwork/attachments/20171011/d863f154/attachment.sig>
More information about the Patchwork
mailing list