docs: clarify backport target · openclaw/openclaw@171675b
steipete
·
2026-05-28
·
via Recent Commits to openclaw:main
| Original file line number | Diff line number | Diff line change |
|---|
@@ -211,6 +211,7 @@ Skills own workflows; root owns hard policy and routing.
|
211 | 211 | - Lockfiles/shrinkwrap are security surface: review `pnpm-lock.yaml`, `npm-shrinkwrap.json`, `package-lock.json`; root/plugin npm packages ship shrinkwrap, not package-lock. |
212 | 212 | - Carbon pins owner-only: do not change `@buape/carbon` unless Shadow (`@thewilloftheshadow`, verified by `gh`) asks. |
213 | 213 | - Releases/publish/version bumps need explicit approval. Use `$release-openclaw-maintainer`. |
| 214 | +- Backport means apply to newest open `release/` branch unless user names another target. |
214 | 215 | - GHSA/advisories: `$openclaw-ghsa-maintainer` / `$security-triage`. Secret scanning: `$openclaw-secret-scanning-maintainer`. |
215 | 216 | - Beta tag/version match: `vYYYY.M.D-beta.N` -> npm `YYYY.M.D-beta.N --tag beta`. |
216 | 217 | |
|
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。