|
Re: Projects included into Sandbox from the 1/26 sandbox review meeting
Hi all,
Does anyone have details on what “Distribution” is? That is a super generic name and the linked issue doesn’t have any pointers to other resources to orient me.
Joe
From:
cncf-toc@... <cncf-toc@...> on behalf of Amye Scavarda Perrin <ascavarda@...>
Date: Tuesday, January 26, 2021 at 9:52 AM
To: CNCF TOC <cncf-toc@...>
Subject: [cncf-toc] Projects included into Sandbox from the 1/26 sandbox review meeting
The TOC has reviewed the projects that have applied to be included in Sandbox, see the results below.
Our next Sandbox review meeting is March 23, 2021.
GitOps
Working Group
passes with a majority vote of the TOC
Piraeus-Datastore
passes with a majority vote of the TOC
cloudquery
not included
calabash
not included
Tuna Lang
not included
KubeInvaders
License issues need to be reviewed before this can be included
Curiefense
passes with a majority vote of the TOC
Athenz
passes with a majority vote of the TOC
Kube-OVN
passes with a majority vote of the TOC
k8dash
passes with a majority vote of the TOC - but TOC would like the project to rename to reduce confusion
Distribution
passes with a majority vote of the TOC
--
Amye Scavarda Perrin | Program Manager |
amye@...
|
|
|
Projects included into Sandbox from the 1/26 sandbox review meeting
The TOC has reviewed the projects that have applied to be included in Sandbox, see the results below.
Our next Sandbox review meeting is March 23, 2021. GitOps Working Group passes with a majority vote of the TOC Piraeus-Datastore passes with a majority vote of the TOC cloudquery not included calabash not included Tuna Lang not included KubeInvaders License issues need to be reviewed before this can be included Curiefense passes with a majority vote of the TOC Athenz passes with a majority vote of the TOC Kube-OVN passes with a majority vote of the TOC k8dash passes with a majority vote of the TOC - but TOC would like the project to rename to reduce confusion Distribution passes with a majority vote of the TOC
-- Amye Scavarda Perrin | Program Manager | amye@...
|
|
|
[TOC Election] Qualified Nominees for January/February 2021 Election
Congratulations to our nominees for the Technical Oversight Committee! These nominees have all passed the qualification process from the Governing Board and TOC. Ricardo Aravena John Belamaric Erin Boyd Cornelia Davis Bridget Kromhout Edward Lee Michael Lieberman Paul Morie Ricardo Rocha Davanum Srinivas Carolyn Van Slyck Kevin (Zefeng) Wang Lei Zhang Dave Zolotusky Voting is now open for the five (5) seats available: three (3) from the Governing Board, and two (2) from the End Users community. Voting will close on February 1, 2021 at 11:59am Pacific time (roughly noon), and the election results will be announced on February 1st.
-- Amye Scavarda Perrin | Program Manager | amye@...
|
|
|
Michelle Noorali <michelle.noorali@...>
I will have to skip as well. Please let me know where I can help.
Michelle
toggle quoted message
Show quoted text
On Jan 18, 2021, at 1:10 PM, Justin Cormack via lists.cncf.io <justin.cormack=docker.com@...> wrote:
I have as well, apologies too.
Justin
On Mon, 18 Jan 2021 at 11:28, Liz Rice < liz@...> wrote: Sorry folks, I've got a conflict for tomorrow's TOC meeting, and I will have to skip this one
Liz
|
|
|
I have as well, apologies too.
Justin
toggle quoted message
Show quoted text
On Mon, 18 Jan 2021 at 11:28, Liz Rice < liz@...> wrote: Sorry folks, I've got a conflict for tomorrow's TOC meeting, and I will have to skip this one
Liz
|
|
|
Sorry folks, I've got a conflict for tomorrow's TOC meeting, and I will have to skip this one
Liz
|
|
|
Re: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
I realise that many enterprise users still see 1.0 as being the first production ready version. Much as Quinton says.
I think that's the heart of the confusion / expectation that I'm seeing. (Or even more precisely that anything under v1.0 is seen by many as not production-ready.) Ack that not every project sees it the same way.
Three concrete suggestions:
1. Incubation criteria already has a requirement for "A clear versioning scheme" but it doesn't say why. Suggestion: "A clear versioning scheme, such as semantic versioning or other clearly-defined scheme from which compatibility expectations can be inferred."
2. Incubation criteria already says that a project must be "used successfully in production by at least three independent end users", and we say here that Graduation means we think the project is ready for adoption by Early Majority organizations. These combined imply "production readiness" at graduation level, but we don't explicitly say it. Suggestion: add to graduation stage criteria "Ready for production use by end user organizations."
3. Following on from 1 & 2, also add to graduation stage criteria "...with release numbering that complies with the project's version numbering scheme, and indicates production readiness."
On Fri, Jan 15, 2021 at 9:23 AM alexis richardson <alexis@...> wrote:
if CNCF wants to help, then publish some guidelines. Or, people will just do their own thing.
On Fri, Jan 15, 2021 at 9:15 AM Gareth Rushgrove < gareth@...> wrote: On Thu, 14 Jan 2021 at 19:25, Matt Farina <matt@...> wrote:
>
> I think there is some nuance in here but it's worth discussing.
>
> For example, if a project is using SemVer there are a couple parts of the spec that come to mind...
>
Let's face it. Most uses of x.y.z aren't SemVer and most people
haven't read the spec :)
I think something about graduated projects having a documented policy
around versioning is probably worthwhile, that feels like a useful
maturity gauge.
In the wider software ecosystem you see examples of popular and widely
adopted software with most types of version numbers. I think
consistency within a project is important, but it doesn't appear the
market in general cares that much about consistency between different
projects.
Gareth
> 4. Major version zero (0.y.z) is for initial development.
>
>
> If a project doesn't have a 1.0.0 yet and it's using SemVer than I don't think it should be graduated because it's still in initial development.
>
> I realize different people do different things with versions. But, versions are about communication. Graduated projects should be clear on their communication of versions.
>
> 1. Software using Semantic Versioning MUST declare a public API.
>
>
> and
>
> 8. Major version X (X.y.z | X > 0) MUST be incremented if any backwards incompatible changes are introduced to the public API.
>
>
> and on the CNCF projects page it talks about Graduated Projects being for the majority. They aren't experiments but things that more cautious businesses can adopt.
>
> A graduated project should state what it's API is (network, library interface, UI output, etc) and then properly version that so that consumers can know what they are getting and when things will change.
>
> These are policy based and different projects can do different things. For example, Kubernetes does not follow SemVer but does specify what is in the supported API policy and how it changes. Helm does something similar with the Go API and output from helm commands. For example, on Helm we have one place where the date format is different from the rest in the output but we can't change that until Helm v4 as a default because we know external tools parse that output.
>
> I would expect graduated projects to do things in a way that communicates clearly on what's happening with versions and have stable releases.
>
> Just my 2 cents.
>
> - Matt Farina
>
> On Thu, Jan 14, 2021, at 1:33 PM, alexis richardson wrote:
>
> IMO, everyone's using version numbers in different ways now. For example many projects go to 1.0 once they are feature complete, and hit production way before that. I think insisting on 1.0 for graduation is unfair and not very helpful.
>
> I realise that many enterprise users still see 1.0 as being the first production ready version. Much as Quinton says.
>
> So, I suggest we leave everything as it is, and make sure that our own graduation criteria are clear.
>
>
>
> On Thu, 14 Jan 2021, 18:27 Quinton Hoole, <quinton@...> wrote:
>
> I'm not convinced that in people's minds, or practically, v1.0 and Graduated mean similar things. As a concrete example, Kubernetes went to v 1.0 several years before it graduated. In my mind, version numbers tend to denote the maturity of the software. Graduation levels add to that the maturity of the process and community around the software.
>
> I do however think that there would be value striving for some amount of consistency in the semantics of version numbering across CNCF projects (possibly) to avoid the kind of confusion that Liz ran into. I don't know exactly what that would look like, but I imagine something along the lines of:
>
> - pre 1.0 denotes "not recommended for production use"
> - post x.y denotes "go for it, people are starting to use it successfully in production"
> - post p.q denotes "rock solid, widely used in production - almost definitely graduated unless there are extenuating circumstances"
>
> ... and so on might make sense.
>
> This detail may well have been debated in depth elsewhere in the CNCF, in which case I apologise for not being up to speed on that :-)
>
> Q
>
>
> On Thu, Jan 14, 2021 at 9:50 AM Michelle Noorali via lists.cncf.io <michelle.noorali=microsoft.com@...> wrote:
>
> +1 imo a graduated project should have some documented backward compatibility guarantees and semantic versioning helps denote this. It has been a best practice on all the projects I've worked on. I'd be supportive of adding a criteria around stability and defining what that means and recommending using a semantic version to denote this for graduation.
>
> ________________________________
> From: cncf-toc@... <cncf-toc@...> on behalf of Liz Rice via lists.cncf.io <liz=lizrice.com@...>
> Sent: Thursday, January 14, 2021 12:26 PM
> To: cncf-toc@... <cncf-toc@...>
> Subject: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
>
> Hi folks,
>
> Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
>
> I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing a v1.0 are similar to what Graduation means?
>
> (I have not checked the version numbers of existing graduated projects)
>
> Thoughts?
>
> Liz
>
>
>
>
>
> --
> Quinton Hoole
> quinton@...
>
>
>
>
>
--
Gareth Rushgrove
@garethr
garethr.dev
devopsweekly.com
|
|
|
Re: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
if CNCF wants to help, then publish some guidelines. Or, people will just do their own thing.
toggle quoted message
Show quoted text
On Fri, Jan 15, 2021 at 9:15 AM Gareth Rushgrove < gareth@...> wrote: On Thu, 14 Jan 2021 at 19:25, Matt Farina <matt@...> wrote:
>
> I think there is some nuance in here but it's worth discussing.
>
> For example, if a project is using SemVer there are a couple parts of the spec that come to mind...
>
Let's face it. Most uses of x.y.z aren't SemVer and most people
haven't read the spec :)
I think something about graduated projects having a documented policy
around versioning is probably worthwhile, that feels like a useful
maturity gauge.
In the wider software ecosystem you see examples of popular and widely
adopted software with most types of version numbers. I think
consistency within a project is important, but it doesn't appear the
market in general cares that much about consistency between different
projects.
Gareth
> 4. Major version zero (0.y.z) is for initial development.
>
>
> If a project doesn't have a 1.0.0 yet and it's using SemVer than I don't think it should be graduated because it's still in initial development.
>
> I realize different people do different things with versions. But, versions are about communication. Graduated projects should be clear on their communication of versions.
>
> 1. Software using Semantic Versioning MUST declare a public API.
>
>
> and
>
> 8. Major version X (X.y.z | X > 0) MUST be incremented if any backwards incompatible changes are introduced to the public API.
>
>
> and on the CNCF projects page it talks about Graduated Projects being for the majority. They aren't experiments but things that more cautious businesses can adopt.
>
> A graduated project should state what it's API is (network, library interface, UI output, etc) and then properly version that so that consumers can know what they are getting and when things will change.
>
> These are policy based and different projects can do different things. For example, Kubernetes does not follow SemVer but does specify what is in the supported API policy and how it changes. Helm does something similar with the Go API and output from helm commands. For example, on Helm we have one place where the date format is different from the rest in the output but we can't change that until Helm v4 as a default because we know external tools parse that output.
>
> I would expect graduated projects to do things in a way that communicates clearly on what's happening with versions and have stable releases.
>
> Just my 2 cents.
>
> - Matt Farina
>
> On Thu, Jan 14, 2021, at 1:33 PM, alexis richardson wrote:
>
> IMO, everyone's using version numbers in different ways now. For example many projects go to 1.0 once they are feature complete, and hit production way before that. I think insisting on 1.0 for graduation is unfair and not very helpful.
>
> I realise that many enterprise users still see 1.0 as being the first production ready version. Much as Quinton says.
>
> So, I suggest we leave everything as it is, and make sure that our own graduation criteria are clear.
>
>
>
> On Thu, 14 Jan 2021, 18:27 Quinton Hoole, <quinton@...> wrote:
>
> I'm not convinced that in people's minds, or practically, v1.0 and Graduated mean similar things. As a concrete example, Kubernetes went to v 1.0 several years before it graduated. In my mind, version numbers tend to denote the maturity of the software. Graduation levels add to that the maturity of the process and community around the software.
>
> I do however think that there would be value striving for some amount of consistency in the semantics of version numbering across CNCF projects (possibly) to avoid the kind of confusion that Liz ran into. I don't know exactly what that would look like, but I imagine something along the lines of:
>
> - pre 1.0 denotes "not recommended for production use"
> - post x.y denotes "go for it, people are starting to use it successfully in production"
> - post p.q denotes "rock solid, widely used in production - almost definitely graduated unless there are extenuating circumstances"
>
> ... and so on might make sense.
>
> This detail may well have been debated in depth elsewhere in the CNCF, in which case I apologise for not being up to speed on that :-)
>
> Q
>
>
> On Thu, Jan 14, 2021 at 9:50 AM Michelle Noorali via lists.cncf.io <michelle.noorali=microsoft.com@...> wrote:
>
> +1 imo a graduated project should have some documented backward compatibility guarantees and semantic versioning helps denote this. It has been a best practice on all the projects I've worked on. I'd be supportive of adding a criteria around stability and defining what that means and recommending using a semantic version to denote this for graduation.
>
> ________________________________
> From: cncf-toc@... <cncf-toc@...> on behalf of Liz Rice via lists.cncf.io <liz=lizrice.com@...>
> Sent: Thursday, January 14, 2021 12:26 PM
> To: cncf-toc@... <cncf-toc@...>
> Subject: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
>
> Hi folks,
>
> Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
>
> I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing a v1.0 are similar to what Graduation means?
>
> (I have not checked the version numbers of existing graduated projects)
>
> Thoughts?
>
> Liz
>
>
>
>
>
> --
> Quinton Hoole
> quinton@...
>
>
>
>
>
--
Gareth Rushgrove
@garethr
garethr.dev
devopsweekly.com
|
|
|
Re: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
On Thu, 14 Jan 2021 at 19:25, Matt Farina <matt@...> wrote:
I think there is some nuance in here but it's worth discussing.
For example, if a project is using SemVer there are a couple parts of the spec that come to mind...
Let's face it. Most uses of x.y.z aren't SemVer and most people haven't read the spec :) I think something about graduated projects having a documented policy around versioning is probably worthwhile, that feels like a useful maturity gauge. In the wider software ecosystem you see examples of popular and widely adopted software with most types of version numbers. I think consistency within a project is important, but it doesn't appear the market in general cares that much about consistency between different projects. Gareth 4. Major version zero (0.y.z) is for initial development.
If a project doesn't have a 1.0.0 yet and it's using SemVer than I don't think it should be graduated because it's still in initial development.
I realize different people do different things with versions. But, versions are about communication. Graduated projects should be clear on their communication of versions.
1. Software using Semantic Versioning MUST declare a public API.
and
8. Major version X (X.y.z | X > 0) MUST be incremented if any backwards incompatible changes are introduced to the public API.
and on the CNCF projects page it talks about Graduated Projects being for the majority. They aren't experiments but things that more cautious businesses can adopt.
A graduated project should state what it's API is (network, library interface, UI output, etc) and then properly version that so that consumers can know what they are getting and when things will change.
These are policy based and different projects can do different things. For example, Kubernetes does not follow SemVer but does specify what is in the supported API policy and how it changes. Helm does something similar with the Go API and output from helm commands. For example, on Helm we have one place where the date format is different from the rest in the output but we can't change that until Helm v4 as a default because we know external tools parse that output.
I would expect graduated projects to do things in a way that communicates clearly on what's happening with versions and have stable releases.
Just my 2 cents.
- Matt Farina
On Thu, Jan 14, 2021, at 1:33 PM, alexis richardson wrote:
IMO, everyone's using version numbers in different ways now. For example many projects go to 1.0 once they are feature complete, and hit production way before that. I think insisting on 1.0 for graduation is unfair and not very helpful.
I realise that many enterprise users still see 1.0 as being the first production ready version. Much as Quinton says.
So, I suggest we leave everything as it is, and make sure that our own graduation criteria are clear.
On Thu, 14 Jan 2021, 18:27 Quinton Hoole, <quinton@...> wrote:
I'm not convinced that in people's minds, or practically, v1.0 and Graduated mean similar things. As a concrete example, Kubernetes went to v 1.0 several years before it graduated. In my mind, version numbers tend to denote the maturity of the software. Graduation levels add to that the maturity of the process and community around the software.
I do however think that there would be value striving for some amount of consistency in the semantics of version numbering across CNCF projects (possibly) to avoid the kind of confusion that Liz ran into. I don't know exactly what that would look like, but I imagine something along the lines of:
- pre 1.0 denotes "not recommended for production use"
- post x.y denotes "go for it, people are starting to use it successfully in production"
- post p.q denotes "rock solid, widely used in production - almost definitely graduated unless there are extenuating circumstances"
... and so on might make sense.
This detail may well have been debated in depth elsewhere in the CNCF, in which case I apologise for not being up to speed on that :-)
Q
On Thu, Jan 14, 2021 at 9:50 AM Michelle Noorali via lists.cncf.io <michelle.noorali=microsoft.com@...> wrote:
+1 imo a graduated project should have some documented backward compatibility guarantees and semantic versioning helps denote this. It has been a best practice on all the projects I've worked on. I'd be supportive of adding a criteria around stability and defining what that means and recommending using a semantic version to denote this for graduation.
________________________________
From: cncf-toc@... <cncf-toc@...> on behalf of Liz Rice via lists.cncf.io <liz=lizrice.com@...>
Sent: Thursday, January 14, 2021 12:26 PM
To: cncf-toc@... <cncf-toc@...>
Subject: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
Hi folks,
Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing a v1.0 are similar to what Graduation means?
(I have not checked the version numbers of existing graduated projects)
Thoughts?
Liz
--
Quinton Hoole
quinton@...
-- Gareth Rushgrove @garethr garethr.dev devopsweekly.com
|
|
|
Re: [VOTE] Open Policy Agent from incubating to graduated
Bartłomiej Płotka
+1 nb 💜 Kind Regards, Bartek Płotka (@bwplotka)
toggle quoted message
Show quoted text
On Wed, Sep 30, 2020 at 5:02 PM Amye Scavarda Perrin < ascavarda@...> wrote:
|
|
|
Re: [VOTE] Open Policy Agent from incubating to graduated
toggle quoted message
Show quoted text
On Wed, Sep 30, 2020 at 5:02 PM Amye Scavarda Perrin < ascavarda@...> wrote:
|
|
|
Re: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
I agree that it should be about setting the bar for the release management, API backwards compatibility, clearly defined versioning scheme and communications around it in Gradulation requirements. Rather than prescribing and generalizing on the SemVer use across the projects. We can put it as a recommendation though.
toggle quoted message
Show quoted text
On Jan 14, 2021, at 11:25 AM, Matt Farina < matt@...> wrote:
I think there is some nuance in here but it's worth discussing.
For example, if a project is using SemVer there are a couple parts of the spec that come to mind...
4. Major version zero (0.y.z) is for initial development.
If a project doesn't have a 1.0.0 yet and it's using SemVer than I don't think it should be graduated because it's still in initial development.
I realize different people do different things with versions. But, versions are about communication. Graduated projects should be clear on their communication of versions.
1. Software using Semantic Versioning MUST declare a public API.
and
8. Major version X (X.y.z | X > 0) MUST be incremented if any backwards incompatible changes are introduced to the public API.
and on the CNCF projects page it talks about Graduated Projects being for the majority. They aren't experiments but things that more cautious businesses can adopt.
A graduated project should state what it's API is (network, library interface, UI output, etc) and then properly version that so that consumers can know what they are getting and when things will change.
These are policy based and different projects can do different things. For example, Kubernetes does not follow SemVer but does specify what is in the supported API policy and how it changes. Helm does something similar with the Go API and output from helm commands. For example, on Helm we have one place where the date format is different from the rest in the output but we can't change that until Helm v4 as a default because we know external tools parse that output.
I would expect graduated projects to do things in a way that communicates clearly on what's happening with versions and have stable releases.
Just my 2 cents.
- Matt Farina
On Thu, Jan 14, 2021, at 1:33 PM, alexis richardson wrote:
IMO, everyone's using version numbers in different ways now. For example many projects go to 1.0 once they are feature complete, and hit production way before that. I think insisting on 1.0 for graduation is unfair and not very helpful.
I realise that many enterprise users still see 1.0 as being the first production ready version. Much as Quinton says.
So, I suggest we leave everything as it is, and make sure that our own graduation criteria are clear.
On Thu, 14 Jan 2021, 18:27 Quinton Hoole, < quinton@...> wrote: I'm not convinced that in people's minds, or practically, v1.0 and Graduated mean similar things. As a concrete example, Kubernetes went to v 1.0 several years before it graduated. In my mind, version numbers tend to denote the maturity of the software. Graduation levels add to that the maturity of the process and community around the software.
I do however think that there would be value striving for some amount of consistency in the semantics of version numbering across CNCF projects (possibly) to avoid the kind of confusion that Liz ran into. I don't know exactly what that would look like, but I imagine something along the lines of:
- pre 1.0 denotes "not recommended for production use"
- post x.y denotes "go for it, people are starting to use it successfully in production"
- post p.q denotes "rock solid, widely used in production - almost definitely graduated unless there are extenuating circumstances"
... and so on might make sense.
This detail may well have been debated in depth elsewhere in the CNCF, in which case I apologise for not being up to speed on that :-)
Q
+1 imo a graduated project should have some documented backward compatibility guarantees and semantic versioning helps denote this. It has been a best practice on all the projects I've worked on. I'd be supportive of adding a criteria around stability and defining what that means and recommending using a semantic version to denote this for graduation.
Hi folks,
Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing a v1.0 are similar to what Graduation means?
(I have not checked the version numbers of existing graduated projects)
Thoughts?
Liz
--
|
|
|
Re: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
I think there is some nuance in here but it's worth discussing.
For example, if a project is using SemVer there are a couple parts of the spec that come to mind...
4. Major version zero (0.y.z) is for initial development.
If a project doesn't have a 1.0.0 yet and it's using SemVer than I don't think it should be graduated because it's still in initial development.
I realize different people do different things with versions. But, versions are about communication. Graduated projects should be clear on their communication of versions.
1. Software using Semantic Versioning MUST declare a public API.
and
8. Major version X (X.y.z | X > 0) MUST be incremented if any backwards
incompatible changes are introduced to the public API.
and on the CNCF projects page it talks about Graduated Projects being for the majority. They aren't experiments but things that more cautious businesses can adopt.
A graduated project should state what it's API is (network, library interface, UI output, etc) and then properly version that so that consumers can know what they are getting and when things will change.
These are policy based and different projects can do different things. For example, Kubernetes does not follow SemVer but does specify what is in the supported API policy and how it changes. Helm does something similar with the Go API and output from helm commands. For example, on Helm we have one place where the date format is different from the rest in the output but we can't change that until Helm v4 as a default because we know external tools parse that output.
I would expect graduated projects to do things in a way that communicates clearly on what's happening with versions and have stable releases.
Just my 2 cents.
- Matt Farina
On Thu, Jan 14, 2021, at 1:33 PM, alexis richardson wrote:
IMO, everyone's using version numbers in different ways now. For example many projects go to 1.0 once they are feature complete, and hit production way before that. I think insisting on 1.0 for graduation is unfair and not very helpful.
I realise that many enterprise users still see 1.0 as being the first production ready version. Much as Quinton says.
So, I suggest we leave everything as it is, and make sure that our own graduation criteria are clear.
On Thu, 14 Jan 2021, 18:27 Quinton Hoole, < quinton@...> wrote: I'm not convinced that in people's minds, or practically, v1.0 and Graduated mean similar things. As a concrete example, Kubernetes went to v 1.0 several years before it graduated. In my mind, version numbers tend to denote the maturity of the software. Graduation levels add to that the maturity of the process and community around the software.
I do however think that there would be value striving for some amount of consistency in the semantics of version numbering across CNCF projects (possibly) to avoid the kind of confusion that Liz ran into. I don't know exactly what that would look like, but I imagine something along the lines of:
- pre 1.0 denotes "not recommended for production use"
- post x.y denotes "go for it, people are starting to use it successfully in production"
- post p.q denotes "rock solid, widely used in production - almost definitely graduated unless there are extenuating circumstances"
... and so on might make sense.
This detail may well have been debated in depth elsewhere in the CNCF, in which case I apologise for not being up to speed on that :-)
Q
+1 imo a graduated project should have some documented backward compatibility guarantees and semantic versioning helps denote this. It has been a best practice on all the projects I've worked on. I'd be supportive of adding a criteria around stability and defining
what that means and recommending using a semantic version to denote this for graduation.
Hi folks,
Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing
a v1.0 are similar to what Graduation means?
(I have not checked the version numbers of existing graduated projects)
Thoughts?
Liz
--
|
|
|
Re: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
IMO, everyone's using version numbers in different ways now. For example many projects go to 1.0 once they are feature complete, and hit production way before that. I think insisting on 1.0 for graduation is unfair and not very helpful.
I realise that many enterprise users still see 1.0 as being the first production ready version. Much as Quinton says.
So, I suggest we leave everything as it is, and make sure that our own graduation criteria are clear.
toggle quoted message
Show quoted text
On Thu, 14 Jan 2021, 18:27 Quinton Hoole, < quinton@...> wrote: I'm not convinced that in people's minds, or practically, v1.0 and Graduated mean similar things. As a concrete example, Kubernetes went to v 1.0 several years before it graduated. In my mind, version numbers tend to denote the maturity of the software. Graduation levels add to that the maturity of the process and community around the software.
I do however think that there would be value striving for some amount of consistency in the semantics of version numbering across CNCF projects (possibly) to avoid the kind of confusion that Liz ran into. I don't know exactly what that would look like, but I imagine something along the lines of:
- pre 1.0 denotes "not recommended for production use" - post x.y denotes "go for it, people are starting to use it successfully in production" - post p.q denotes "rock solid, widely used in production - almost definitely graduated unless there are extenuating circumstances"
... and so on might make sense.
This detail may well have been debated in depth elsewhere in the CNCF, in which case I apologise for not being up to speed on that :-)
Q
+1 imo a graduated project should have some documented backward compatibility guarantees and semantic versioning helps denote this. It has been a best practice on all the projects I've worked on. I'd be supportive of adding a criteria around stability and defining
what that means and recommending using a semantic version to denote this for graduation.
Hi folks,
Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing
a v1.0 are similar to what Graduation means?
(I have not checked the version numbers of existing graduated projects)
Thoughts?
Liz
--
|
|
|
Re: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
Quinton Hoole <quinton@...>
I'm not convinced that in people's minds, or practically, v1.0 and Graduated mean similar things. As a concrete example, Kubernetes went to v 1.0 several years before it graduated. In my mind, version numbers tend to denote the maturity of the software. Graduation levels add to that the maturity of the process and community around the software.
I do however think that there would be value striving for some amount of consistency in the semantics of version numbering across CNCF projects (possibly) to avoid the kind of confusion that Liz ran into. I don't know exactly what that would look like, but I imagine something along the lines of:
- pre 1.0 denotes "not recommended for production use" - post x.y denotes "go for it, people are starting to use it successfully in production" - post p.q denotes "rock solid, widely used in production - almost definitely graduated unless there are extenuating circumstances"
... and so on might make sense.
This detail may well have been debated in depth elsewhere in the CNCF, in which case I apologise for not being up to speed on that :-)
Q
toggle quoted message
Show quoted text
+1 imo a graduated project should have some documented backward compatibility guarantees and semantic versioning helps denote this. It has been a best practice on all the projects I've worked on. I'd be supportive of adding a criteria around stability and defining
what that means and recommending using a semantic version to denote this for graduation.
Hi folks,
Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing
a v1.0 are similar to what Graduation means?
(I have not checked the version numbers of existing graduated projects)
Thoughts?
Liz
|
|
|
Re: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
+1 imo a graduated project should have some documented backward compatibility guarantees and semantic versioning helps denote this. It has been a best practice on all the projects I've worked on. I'd be supportive of adding a criteria around stability and defining
what that means and recommending using a semantic version to denote this for graduation.
From: cncf-toc@... <cncf-toc@...> on behalf of Liz Rice via lists.cncf.io <liz=lizrice.com@...>
Sent: Thursday, January 14, 2021 12:26 PM
To: cncf-toc@... <cncf-toc@...>
Subject: [EXTERNAL] [cncf-toc] What do we mean by “Version 1.0”?
Hi folks,
Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing
a v1.0 are similar to what Graduation means?
(I have not checked the version numbers of existing graduated projects)
Thoughts?
Liz
|
|
|
What do we mean by “Version 1.0”?
Hi folks,
Someone I spoke with today said something along the lines “if <this project> is stable, why is it still at v0.something?” and that got me thinking - does it make any sense to expect Graduated projects to be at v1.0 or above?
I know this is easily gamed, in the sense that project maintainers can release any version number they like, but let’s set that aside for now and assume that maintainers are well intentioned. I wonder if the signals that are sent by releasing a v1.0 are similar to what Graduation means?
(I have not checked the version numbers of existing graduated projects)
Thoughts?
Liz
|
|
|
Re: SIG-Security Tech Lead nominations
RESULT:
Welcome new tech leads!
toggle quoted message
Show quoted text
On Thu, Dec 17, 2020 at 5:43 PM Jeyappragash Jeyakeerthi < jj@...> wrote: Dear Technical Oversight Committee, On December 16th 2020, the SIG-Security co-chairs along with then TOC liason’s Liz Rice and Justin Cormack, agreed to nominate three Tech Leads for SIG-Security: Ashutosh Narkar, Aradhana Chetal and Andres Vega. “Tech leads are assigned following a 2/3 majority vote of the TOC and a 2/3 majority vote of SIG Chairs” — cncf-sig elections Thank you!
Jeyappragash.J.J (On behalf of SIG-Security Chairs)
TL Candidates - Dec 2020
Ashutosh Narkar
Aradhana Chetal
Andres Vega
-- Amye Scavarda Perrin | Program Manager | amye@...
|
|
|
Re: SIG-Security Tech Lead nominations
Magno Logan <magno.logan@...>
toggle quoted message
Show quoted text
+1 binding
On Thu, Dec 17, 2020 at 5:43 PM Jeyappragash Jeyakeerthi < jj@...> wrote: Dear Technical Oversight Committee, On December 16th 2020, the SIG-Security co-chairs along with then TOC liason’s Liz Rice and Justin Cormack, agreed to nominate three Tech Leads for SIG-Security: Ashutosh Narkar, Aradhana Chetal and Andres Vega. “Tech leads are assigned following a 2/3 majority vote of the TOC and a 2/3 majority vote of SIG Chairs” — cncf-sig elections Thank you!
Jeyappragash.J.J (On behalf of SIG-Security Chairs)
TL Candidates - Dec 2020
Ashutosh Narkar
Aradhana Chetal
Andres Vega
|
|
|
Re: Public comment period for Ambassador
Ah, ok. Sorry, my mistake!
toggle quoted message
Show quoted text
It wasn't in the sandbox, they went straight for incubation: https://github.com/datawire/ambassador
I know it can be confusing as they were originally considered a sandbox contribution but decided to go straight for incubation.
We will work with the project and come up with a new name based on this feedback.
On Thu, Jan 7, 2021 at 12:25 PM Liz Rice < liz@...> wrote: This question is probably six months too late, but didn't CNCF own the Ambasaador trademark (since the project joined Sandbox)?
On Thu, 7 Jan 2021 at 18:08, Joe Beda < joe@...> wrote: Personally I disagree that this is akin to asking for a license change.
The name is an intrinsic part of the project. It is the primary key for the community. This feels more like accepting a fork (well, I'm assuming there is no divergence) while the original project stays with the commercial entity. Personally, I'm interested to see how much of a community is left after the name change and how much of that community is attached to the commercial entity named "Ambassador".
On Thu, Jan 7, 2021 at 10:04 AM Chris Aniszczyk < caniszczyk@...> wrote: I don't think we have to fully pause everything but it's up to the TOC here, if the TOC is saying "choose another name than IC4EP or something else that wouldn't confuse end users" before we accept the project fully then the project can do that in parallel as we onboard it as part of staff duties. We can work with the project to pick up a name and run it by the TOC again.
IMHO I view this a bit similar to a project coming in that may have to change a license to Apache-2 etc (like grpc did as an example), just part of the onboarding process.
OK then IMO we have to pause this for a bit. Can we finalize the name, get it fully done, and then re-submit the DD with the new name, website, etc. clearly in place?
On Thu, Jan 7, 2021 at 9:55 AM Chris Aniszczyk < caniszczyk@...> wrote: The problem is the company rebranded to Ambassador also here: https://www.getambassador.io, so the project needs to be renamed to deal with the obvious trademark conflict here. The CNCF is open to whatever the project decides and that clears a trademark search.
Also, to be clear, I think Ambassador is a big part of the OSS brand and I had erroneously thought that we were sticking with that name. If we are going to change the name to something entirely new it might be good to do that and then circle back in a few months to see how it's going.
I'm sorry for not tracking this more closely, but I agree with Joe on this. I'm not OK with an acronym for something that IMO is too generic. I think you either have to stick with Ambassador or choose an entirely new name.
On Thu, Jan 7, 2021 at 9:37 AM Joe Beda < joe@...> wrote: IC4E only begs the question about what it stands for. It also doesn't set the project up, IMO, for success as the more memorable name will be with the commercial entity and it could stunt the development of the open source project outside of the commercial attachments. If this were at the Sandbox level I probably wouldn't be bringing this up, but the name change along with introduction into Incubation is something new that the CNCF hasn't seen before. I worry people will still colloquially refer to the OSS project as "Ambassador" (and documentation and install scripts still use the name).
Hi Joe, Matt, many thanks for your comments.
@Matt, I remember you raising this in the DD document comments,
and @Chris Aniszczyk suggested this would be acceptable under the
trademark policy (e.g. "X for Envoy"). He suggested that we use a
short name like "IC4E" in the docs and new website that would be
created for the project.
We originally looked to ingress-nginx as inspiration, since the
community seems to have accepted this as a name even though it’s
well-understood it’s not “official”. We also wanted to with a
descriptive name instead of an abstract name, because we thought
it would be easier for people to understand.
Best wishes,
Daniel
On 06/01/2021 19:54, Matt Klein wrote:
> I object to the name "Ingress Controller for
Envoy Proxy” as that also describes Contour. This will create
confusion and will be easily misread as "THE Ingress Controller
for Envoy Proxy" and will violate the "no kingmakers" value of
the TOC.
I agree and I raised a similar concern at some point but I
don't remember the outcome here. @Daniel Bryant?
On Wed, Jan 6, 2021 at 10:48
AM Joe Beda < joe@...> wrote:
What is the new name? The name "ambassador" is
all over the docs and I'd expect to see this reframed around
the new name.
I object to the name "Ingress Controller for Envoy
Proxy” as that also describes Contour. This will create
confusion and will be easily misread as "THE Ingress
Controller for Envoy Proxy" and will violate the "no
kingmakers" value of the TOC.
Joe
All,
Ambassador is applying for incubation status:
DD has been reviewed by myself and SIG Network
and we are supportive. We are now calling for the 2
week public comment period prior to the vote.
Thanks,
Matt
--
Daniel Bryant | @danielbryantuk
--
I like to work flexible hours (and across time zones), but please don't feel obligated to reply to this message outside of your own working hours.
--
--
--
|
|
|
