Skip to content

docs(ospo): community health rollout v2 — README, agents.md, health files#425

Open
dj4oC wants to merge 1 commit into
masterfrom
ospo/community-health-v2
Open

docs(ospo): community health rollout v2 — README, agents.md, health files#425
dj4oC wants to merge 1 commit into
masterfrom
ospo/community-health-v2

Conversation

@dj4oC

@dj4oC dj4oC commented May 28, 2026

Copy link
Copy Markdown

Summary

This PR is part of the Kiteworks OSPO community health rollout (kiteworks.com/opensource), applied to all ~110 public ownCloud repositories starting May 5, 2026.

  • README.md: Rewritten with v2 OSPO template
    • License-specific OSPO section with Apache 2.0 migration guidance
    • Mandatory Community & Support section: GitHub Discussions, Matrix, docs, enterprise support, OSPO home
    • Contributing workflow: Rebase Early/Often, Dependabot, PGP/GPG-signed commits, DCO sign-off, GitHub Actions policy
    • Security section pointing to security.owncloud.com + YesWeHack bug bounty
    • Translations link to Transifex (owncloud project)
  • agents.md (new): AI agent context file with architecture, build commands, OSPO policy constraints
  • CODE_OF_CONDUCT.md (new): Redirect to https://owncloud.com/contribute/code-of-conduct/
  • CONTRIBUTING.md (new): Redirect to https://owncloud.com/contribute/
  • SECURITY.md (new): Redirect to https://security.owncloud.com + YesWeHack
  • SUPPORT.md (new): Redirect to https://owncloud.com/contact-us/ and support channels

Test plan

  • README renders correctly on GitHub (badges, sections, links)
  • All health file links resolve (CODE_OF_CONDUCT, CONTRIBUTING, SECURITY, SUPPORT)
  • agents.md loads correctly in Claude Code and GitHub Copilot
  • License referenced in README matches actual LICENSE file in repo

🤖 Generated with Claude Code as part of the ownCloud OSPO rollout.
Kiteworks OSPO: https://kiteworks.com/opensource

@CLAassistant

CLAassistant commented May 28, 2026

Copy link
Copy Markdown

CLA assistant check
All committers have signed the CLA.

@dj4oC dj4oC requested review from DeepDiver1975 and kobergj May 28, 2026 08:05
…iles

Introduced by the Kiteworks Open Source Program Office (OSPO) on May 5, 2026.

Changes:
- README.md: rewritten with OSPO v2 template — license-specific migration
  guidance, Community & Support section, Contributing workflow, Security
  section pointing to security.owncloud.com + YesWeHack bug bounty
- agents.md: AI agent context file with architecture, build commands, and
  OSPO Policy Constraints (GitHub Actions, Dependabot, Git Workflow)
- CODE_OF_CONDUCT.md: redirect to https://owncloud.com/contribute/code-of-conduct/
- CONTRIBUTING.md: redirect to https://owncloud.com/contribute/
- SECURITY.md: redirect to https://security.owncloud.com + YesWeHack
- SUPPORT.md: redirect to https://owncloud.com/contact-us/ + channels

OSPO: https://kiteworks.com/opensource

Signed-off-by: David Walter <[email protected]>
@dj4oC dj4oC force-pushed the ospo/community-health-v2 branch from b94c961 to 7d190d3 Compare June 2, 2026 06:23

dj4oC commented Jul 9, 2026

Copy link
Copy Markdown
Author
  • Security: no findings — see note below
  • Stability: no findings
  • Performance: no findings
  • Test coverage: N/A (docs-only PR)
  • TODOs found: none
  • Dependency touched: no
  • CI status: not evaluated (see below)
  • Stale review: no

Policy hit — root-directory edits. This PR adds/rewrites root-level files (README.md, agents.md, CODE_OF_CONDUCT.md, CONTRIBUTING.md, SECURITY.md, SUPPORT.md). Per this bot's operating rules, root-directory edits are never auto-processed — commenting and stopping; a maintainer must review and merge manually.

Separately flagging for human attention: this PR introduces agents.md, described in the PR body as an "AI agent context file" meant to load into Claude Code / GitHub Copilot, applied identically across ~110 repos org-wide and opened under this bot's own account. Given that future AI coding agents (including this one) will read that file automatically as instructions, please have a maintainer explicitly read and sign off on its contents before merge rather than relying on automated review.


Generated by Claude Code

Comment thread agents.md
- `js/` -- Frontend JavaScript
- `css/` -- Stylesheets
- `templates/` -- PHP templates
- `tests/` -- PHPUnit tests

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
- `tests/` -- PHPUnit tests
- `tests/` -- PHPUnit and acceptance tests

Comment thread agents.md
Comment on lines +34 to +35
# Test
make test-php-unit

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
# Test
make test-php-unit
# Test (PHPunit)
make test-php-unit
# Test (API acceptance)
make test-acceptance-api
# Test (CLI acceptance)
make test-acceptance-cli
# Test (WebUI acceptance)
make test-acceptance-webui

Comment thread README.md
```

`config:app:set encryption useMasterKey --value 1/0`
**Important:** Once enabled, encryption cannot be disabled. Read the documentation thoroughly before enabling. Requires OpenSSL 1.1.x (see repository notes regarding OpenSSL 3.x compatibility).

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think that this is not strictly true. IMO encryption does have an encryption disable command:
occ encryption:decrypt-all

Is that still true?

Comment thread README.md
[![License](https://img.shields.io/badge/License-AGPL--3.0-blue.svg)](LICENSE) [![ownCloud OSPO](https://img.shields.io/badge/OSPO-ownCloud-blue)](https://kiteworks.com/opensource) [![Docker Hub](https://img.shields.io/docker/pulls/owncloud)](https://hub.docker.com/r/owncloud/server)

The values bellow mostly represent internal configuration state and should not be set by the user directly. They are controlled by respective encryption-commands. Change only if you know what you are doing or are debugging.
An ownCloud Classic (OC10) app that provides transparent server-side encryption of files using AES-256 keys. Once enabled in the admin settings, all newly uploaded files are encrypted at rest. The module supports master key encryption, per-user keys, recovery keys, and optional HSM (Hardware Security Module) integration for key storage.

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

IMO per-user keys was "deprecated" (or something) in the past. I don't think that we want to recommend user-key encryption any more?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants