Date: Wed, 23 Apr 2025 16:47:01 GMT From: Joseph Mingrone <jrm@FreeBSD.org> To: doc-committers@FreeBSD.org, dev-commits-doc-all@FreeBSD.org Subject: git: c1977b930e - main - status: Add 2025q1 Infrastructure Modernization report entry Message-ID: <202504231647.53NGl1rU021786@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help
The branch main has been updated by jrm: URL: https://cgit.FreeBSD.org/doc/commit/?id=c1977b930e4147c197143667e381cef80b5468de commit c1977b930e4147c197143667e381cef80b5468de Author: Alice Sowerby <alice@freebsdfoundation.org> AuthorDate: 2025-04-21 18:05:17 +0000 Commit: Joseph Mingrone <jrm@FreeBSD.org> CommitDate: 2025-04-23 16:44:42 +0000 status: Add 2025q1 Infrastructure Modernization report entry Reviewed by: salvadore Sponsored by: The FreeBSD Foundation Pull Request: https://github.com/freebsd/freebsd-doc/pull/490 --- .../foundation-infrastructure_modernization.adoc | 41 ++++++++++++++++++++++ 1 file changed, 41 insertions(+) diff --git a/website/content/en/status/report-2025-01-2025-03/foundation-infrastructure_modernization.adoc b/website/content/en/status/report-2025-01-2025-03/foundation-infrastructure_modernization.adoc new file mode 100644 index 0000000000..45d0b7d592 --- /dev/null +++ b/website/content/en/status/report-2025-01-2025-03/foundation-infrastructure_modernization.adoc @@ -0,0 +1,41 @@ +=== Infrastructure Modernization + +Contact: Ed Maste <emaste@FreeBSD.org> +Contact: Alice Sowerby <alice@freebsdfoundation.org> + +The project started in Q3 of 2024 and was commissioned by the Sovereign Tech Agency with a budget of $745,000, to be spent over about one year. +The main goals are to improve security tools for the base system, ports, and packages, update the project's infrastructure to speed up development, enhance build security, and make it easier for new developers to get started. + +==== Q1 update +Three of the five work packages are now in progress, with the remaining two to start in April. +The overall schedule has been re-planned to run through to December 2025, allowing for a more sustainable pace of work. + +===== Work Package A: Technical Debt reduction +The Foundation and the FreeBSD Project's Source Management team is working together to make bug management easier and more sustainable. +There is now a link:https://grimoire.freebsd.org[bug backlog dashboard], which helps make the backlog easier to understand during "bug busting" sessions, and is already showing that more bugs are being closed than being opened. +This is hosted on FreeBSD and link:https://github.com/chaoss/grimoirelab/blob/main/FreeBSD.md[documentation] has been submitted upstream to the GrimoireLab project so others can do the same. + +One way to learn more about the project is to listen to the link:https://podcast.chaoss.community/103[CHAOSScast episode] where we talked about this work package. + +We have also been upgrading Bugzilla by applying patches from 2023 onward and improving the upgrade process to ensure smoother future updates. + +===== Work Package B: Zero Trust Builds +Much of the foundational work has been completed to standardize all source release build cases using no-root for creation of release artifacts. +We are formalizing and documenting make world and [.filename]#release.sh# to provide joined-up documentation for users. +In order to get src to build reproducibly we are creating CI tests and are working with link:https://reproducible-builds.org[Reproducible-Builds.org] to restore the link:https://tests.reproducible-builds.org/freebsd/freebsd.html[FreeBSD reproducible CI]. +Read their link:https://reproducible-builds.org/reports/2025-02/[February report]. + +===== Work Package C: CI/CD Automation +The high-level goal is to improve CI/CD automation to streamline software delivery and operations for new and existing software. +Work so far is focusing on: + +* Improving the quality of incoming commits by providing system-agnostic tooling and documentation so that maintainers and developers can run CI without requiring a 3rd-party service (link:https://reviews.freebsd.org/D48015). +* Making it possible to run pre-merge CI on proposed submissions (e.g. Pull Requests) (link:https://reviews.freebsd.org/D36257). +* Documenting the CI management process to make it easier to keep tooling up to date and patched. +* Updating the Source and Ports tests to include standard linters and other relevant automated analysis tools. + +===== Work Package D: Security Controls in Ports and Packages and Work Package E: Improve Software Bill of Materials (SBOM) +These work packages are scheduled to start in April. +The Foundation has been collaborating with FreeBSD Project teams to scope the projects appropriately. + +Commissioning body: Sovereign Tech Agency
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202504231647.53NGl1rU021786>