Skip to content

[Security] Temporarily disable master branch protection for sensitive data cleanup#5443

Merged
casionone merged 1 commit into
apache:masterfrom
aiceflower:remove-master-protection
Jun 16, 2026
Merged

[Security] Temporarily disable master branch protection for sensitive data cleanup#5443
casionone merged 1 commit into
apache:masterfrom
aiceflower:remove-master-protection

Conversation

@aiceflower

@aiceflower aiceflower commented Jun 16, 2026

Copy link
Copy Markdown
Member

Motivation

GitHub branch protection on master prevents force-push, which is required to clean sensitive information leaked in historical commits per the security ticket.

The following sensitive data needs to be cleaned from the git history:

  • Internal IPs (e.g., 10.107.x.x, 172.21.x.x) → 127.0.0.1
  • Database passwords (e.g., bdpVsbi@2019, bdpeasyide@bdpsit) → default
  • Internal domains (e.g., weoa.com) → localhost
  • Database names (e.g., vsbi_gz_bdap_sit_01) → default_db

What this PR does

Comments out the protected_branches.master section in .asf.yaml. Once merged, ASF's puppet bot will sync the configuration to GitHub and remove the protection rule (typically within minutes).

Plan

  1. Merge this PR → ASF bot removes master protection
  2. Force-push rewritten history to master (and tags)
  3. Submit a follow-up PR to restore the protected_branches.master configuration

Precedent

This same mechanism has been used multiple times historically (see commits 9d8fd0372, 831d80b63, 613c3b884).

Test plan

  • Merge PR
  • Wait ~5 minutes for ASF puppet bot to sync configuration
  • Verify master branch protection is removed via gh api repos/apache/linkis/branches/master
  • Proceed with security cleanup force-push
  • Submit follow-up PR to restore protection

🤖 Generated with Claude Code

@aiceflower
#AI COMMIT# Temporarily disable master branch protection for security…
651ad4d 
… cleanup

To clean sensitive information (internal IPs, passwords, internal domains)
from historical commits per security ticket, master branch needs to be
force-pushable. The cleanup is required for:

* Internal IPs (e.g., 10.x.x.x, 172.21.x.x) -> 127.0.0.1
* Database passwords (e.g., bdpVsbi@2019) -> default
* Internal domains (e.g., weoa.com) -> localhost
* Database names (e.g., vsbi_gz_bdap_sit_01) -> default_db

The protection rule will be restored in a follow-up PR after the cleanup.
This is the same mechanism used previously (see commits 9d8fd03, 831d80b,
613c3b8 for reference).
casionone
casionone approved these changes Jun 16, 2026
View reviewed changes

@casionone casionone left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM.

@casionone casionone merged commit d3fda0b into apache:master Jun 16, 2026
5 of 11 checks passed
@aiceflower aiceflower mentioned this pull request Jun 17, 2026
Merged
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@casionone casionone casionone approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aiceflower @casionone