This doc explains the necessary ansible-build-data changes to enforce Ansible Community Steering Committee Policies such as Removal from Ansible and Repository management.
If a collection should be removed in a future Ansible version, its removal should be announced in all current major releases, and should also be announced in the upcoming major release (unless it is removed from that version - see the next subsection for that).
To announce removal, removal metadata needs to be added to the collection metadata in collection-meta.yaml.
Assume you have the following collection metadata:
collections:
foo.bar:
maintainers:
- Foo Bar
repository: https://github.com/ansible-collections/foo.barThen a removal subkey needs to be added to foo.bar with the following fields:
-
major_version: the major Ansible version from which the collection shall be removed. -
reason: can be one of:-
deprecated: the collection has been deprecated by its maintainers. (Official process.) -
considered-unmaintained: the collection is considered unmaintained by the Steering Committee. (Official process.) -
renamed: the collection has been renamed. The new name of the collection should be specified innew_name. Alsoredirect_replacement_major_versionshould be added with the major Ansible release that will contain only deprecated redirects to the new collections.Note that in this case,
major_versioncan have the special valueTBDfor when it is not clear when the old collection will eventually be removed from Ansible yet. -
guidelines-violation: the collection has been removed by the Steering Committee due to guidelines violation. Further details must be provided inremoval_text. (Official process.) -
other: the collection has been removed for other reasons. Further explanation on why the collection will be removed must be provided inremoval_text.
-
-
announce_version: optional string to indicate in which release of this Ansible major version the removal should be announced. When adding a new removal, use the next version that will be used for a release. A corresponding changelog entry will automatically be added to this version in the Ansible changelog. -
discussion: optional string with an URL to the removal discussion in the forum. This link will be mentioned in the generated changelog entries and on the docsite.
The following are a few examples of how removal metadata can look:
collections:
foo.bar_deprecated:
# In case a collection has been deprecated/abandoned by its maintainers.
repository: https://github.com/ansible-collections/foo.bar
removal:
major_version: 20
reason: deprecated
announce_version: 11.2.0
discussion: https://forum.ansible.com/t/.../
foo.bar_unmaintained:
# In case the Steering Committee decided that a collection is effectively unmaintained.
repository: https://github.com/ansible-collections/foo.bar
removal:
major_version: 20
reason: considered-unmaintained
announce_version: 11.2.0
discussion: https://forum.ansible.com/t/.../
foo.bar_renamed:
# Use this in case a collection has been renamed.
repository: https://github.com/ansible-collections/foo.bar
removal:
major_version: 20 # can be TBD if not yet known
reason: renamed
new_name: foo.bar_new_name
redirect_replacement_major_version: 13 # leave away if not yet known
announce_version: 11.2.0
discussion: https://forum.ansible.com/t/.../
foo.bar_guidelines_violation:
# In case the Steering Committe decided to remove the collection for guidelines violation.
repository: https://github.com/ansible-collections/foo.bar
removal:
major_version: 20
reason: guidelines-violation
removal_text: >-
Extra text that must specify what happened. Can use L(Ansible markup,
https://docs.ansible.com/ansible/devel/dev_guide/developing_modules_documenting.html#linking-within-module-documentation).
announce_version: 11.2.0
discussion: https://forum.ansible.com/t/.../
foo.bar_other:
# If the Steering Committee decides to remove a collection for a non-predefined reason.
repository: https://github.com/ansible-collections/foo.bar
removal:
major_version: 20
reason: other
removal_text: >-
Text that must specify why the collection was removed. Can use L(Ansible markup,
https://docs.ansible.com/ansible/devel/dev_guide/developing_modules_documenting.html#linking-within-module-documentation).
announce_version: 11.2.0
discussion: https://forum.ansible.com/t/.../You can use antsibull-build lint-build-data --data-dir /path/to/ansible-build-data/X/ X
(where X is the major version)
to validate the entries.
If a collection should be removed from the upcoming Ansible major version, for which a metadata directory already exists but for which feature freeze has not yet happened, the collection needs to be removed from the build metadata. Also note that the removal should be announced in existing major versions, see the previous section for details on that.
First, remove the collection's entries from ansible.in, ansible-X.build, and if necessary, ansible-X.constraints.
Then the metadata in collections-meta.yaml needs to be updated:
-
For that, locate the collection in the
collectionslist. Select the entry, copy it to the clipboard, and remove it fromcollections. -
Locate the
removed_collectionslist and the position where the collection should be inserted. Paste the copied entry from the clipboard. -
If
removalalready exists, edit it as follows:-
Replace
major_versionbyversion, and put in the exact Ansible version from which the collection is removed. Note that this should not happen after the feature freeze! -
If
announce_versionis present, remove it. This removes the corresponding changelog entry if the Ansible changelog is regenerated, but that entry should not have been there unless the major version for removal got changed (in that case add an explicit manual entry tochangelog.yamlif you want to keep the old entry).
-
-
If
removaldoes not yet exist, create it as described in the previous section, with the changes as described in the previous point.
As an example, consider the following metadata entry:
collections:
foo.bar:
repository: https://github.com/ansible-collections/foo.barThis should be moved to removed_collections and changed as follows:
removed_collections:
foo.bar:
repository: https://github.com/ansible-collections/foo.bar
removal:
version: 20.0.0a1
reason: deprecated
discussion: https://forum.ansible.com/t/.../You can use antsibull-build lint-build-data --data-dir /path/to/ansible-build-data/X/ X
(where X is the major version)
to validate the entries.
If a collection that is scheduled for removal in an upcoming major release should be kept, the removal metadata needs to be adjusted. The collection needs to be re-added in the build metadata for the upcoming major release if it has already been removed from there; details for this can be found in the next subsection.
Locate the removal entry for the collection in collection-meta.yaml's collections list,
and update it as follows:
-
If not there, add a
updates:subkey. -
Add an entry with
cancelled_version(the Ansible release where the cancelation should be announced in the changelog) andreason_text(explanation), and optionallydiscussion(if a different discussion URL should be used).
This can look as follows:
collections:
foo.bar:
repository: https://github.com/ansible-collections/foo.bar
removal:
major_version: 20
reason: deprecated
announce_version: 12.3.0
discussion: https://forum.ansible.com/t/.../
updates:
- cancelled_version: 12.5.0
reason_text: Maintenance of the collection has been taken over by L(someone else, https://...).You can use antsibull-build lint-build-data --data-dir /path/to/ansible-build-data/X/ X
(where X is the major version)
to validate the entries.
If a collection that has already been removed from the upcoming major version should be kept, the removal metadata needs to be adjusted. The removal needs to be canceled for previous major releases, details for this can be found in the prevous subsection.
First, add the collection's entries to ansible.in and ansible-X.build.
Then the metadata in collections-meta.yaml needs to be updated:
-
For that, locate the collection in the
removed_collectionslist. Select the entry, copy it to the clipboard, and remove it fromremoved_collections. -
Locate the
collectionslist and the position where the collection should be inserted. Paste the copied entry from the clipboard. -
If not there, add a
updates:subkey. -
Remove
announce_versionfrom the mainremovalentry and add it to a newupdatesentry with keyremoved_version. -
Add an
updatesentry withreadded_version(the Ansible release where the re-add should be announced in the changelog) andreason_text(explanation), and optionallydiscussion(if a different discussion URL should be used).
As an example, consider the following metadata entry:
removed_collections:
foo.bar:
maintainers:
- Foo bar
repository: https://github.com/ansible-collections/foo.bar
removal:
version: 11.0.0a1
reason: considered-unmaintained
discussion: https://forum.ansible.com/t/.../
announce_version: 10.0.0a1This should be moved to collections and changed as follows:
collections:
foo.bar:
maintainers:
- Foo bar
repository: https://github.com/ansible-collections/foo.bar
removal:
major_version: 11
reason: considered-unmaintained
discussion: https://forum.ansible.com/t/.../
updates:
- removed_version: 11.0.0a1
- readded_version: 11.0.0b2
reason_text: Maintenance of the collection has been taken over by L(another team, https://...).You can use antsibull-build lint-build-data --data-dir /path/to/ansible-build-data/X/ X
(where X is the major version)
to validate the entries.
It can happen that a collection is scheduled for removal (deprecated) that already was scheduled for removal before (or even has been removed before), but the removal was canceled or the removed collection re-added. In that case, updating the build metadata is a bit different from announcing its removal the first time.
Then the metadata in collections-meta.yaml needs to be updated.
The collection should be in collections and already have a removal subkey,
and that should have a updates subkey.
Simply add a new entry there with:
-
redeprecated_version: the exact Ansible version when the re-deprecation should be announced. -
discussion: optional URL if a new discussion thread is used on the forum. If not provided,discussionfrom theremovalentry will be used. -
reason: a reason why the collection has been re-deprecated. Can be one ofdeprecated,considered-unmaintained,renamed,guidelines-violation, orother. -
reason_text: can only be provided ifreasonis not provided, or if it is one ofotherandguidelines-violation. It always must be provided ifreasonis one ofotherandguidelines-violation.
For example:
collections:
foo.bar:
maintainers:
- Foo bar
repository: https://github.com/ansible-collections/foo.bar
removal:
major_version: 11
reason: considered-unmaintained
discussion: https://forum.ansible.com/t/.../
updates:
- removed_version: 11.0.0a1
- readded_version: 11.0.0b2
reason_text: Maintenance of the collection has been taken over by L(another team, https://...).
- redeprecated_version: 11.3.0
discussion: https://...
reason: guidelines-violation
reason_text: The guideline L(XXX, https://...) was violated.
You can use antsibull-build lint-build-data --data-dir /path/to/ansible-build-data/X/ X
(where X is the major version)
to validate the entries.
From ansible 7.2.0 onwards, each release contains a ansible-VERSION-tags.yaml
data file in this repository.
This file contains a mapping of collections to their git repositories and the
git tag that corresponds to the version of a collection included in the ansible release.
The Ansible release playbook generates this tags data file during the
antsibull-build prepare step and later runs
the antsibull-build validate-tags-file command to validate it.
It is also possible to separately run antsibull-build validate-tags-file.
For example, to validate the tags file for ansible 7.5.0, run
$ antsibull-build validate-tags-file 7/ansible-7.5.0-tags.yaml
cisco.nso 1.0.3 is not tagged in https://github.com/CiscoDevNet/ansible-nso
hpe.nimble 1.1.4 is not tagged in https://github.com/hpe-storage/nimble-ansible-modules
mellanox.onyx 1.0.0 is not tagged in https://github.com/ansible-collections/mellanox.onyx
$ echo $?
1Since these collections were not properly tagged prior to this policy's
formalization, they are listed in 7/validate-tags-ignores.
The release playbook passes that file to
antsibull-build validate-tags-file's --ignores-file flag to ignore errors
for those collections.
$ antsibull-build validate-tags-file --ignores-file 7/validate-tags-ignores 7/ansible-7.5.0-tags.yaml
(no output)
$ echo $?
0When building future ansible versions, any untagged collections will cause
ansible-build validate-tags-file to fail.
Prior to ansible 9.0.0a1, the release playbook treats validation errors as warnings. In ansible 9.0.0a1 and onwards, these validation errors constitute release blockers. The playbook will fail if any new collection releases are not properly tagged.
Note
It is recommended to run the release playbook with
ANSIBLE_CALLBACK_RESULT_FORMAT=yamlso error messages and any other playbook output are more legible.
In case of violations, the release manager must preform the following steps:
-
First, the collection must be restricted to the previous tagged release in the
ansible-VERSION.constraintsfile.Take the
community.dockercollection as an example. If its version 3.9.0 was released and correctly tagged, and 3.9.1 was released but not correctly tagged, addcommunity.docker: <3.9.1 -
Commit only the changed
ansible-VERSION.constraintsfile:git add 8/ansible-8.constraints git commit -m "pin community.docker to previous release" -
Rerun the release playbook. In this example, the ansible distribution will be built with community.docker 3.9.0 even though community.docker 3.9.1 is the latest version.
-
Proceed with the rest of the release process as normal. Commit the other changed files. The collection release PR should be applied using the
Rebase and mergeoption (as opposed toSquash and merge) so the first commit can be more easily reverted when/if the collection fixes the issue. -
The release manager or another community member needs to file an issue in the violating collection's issue tracker. This part should not block the current ansible package release, but the issue must have been filed before the following minor release. The following issue template can be used:
Hi! As part of the ansible community package release process, we've determined that version {VERSION} of {COLLECTION} was released to Ansible Galaxy but not properly tagged in this Git repository. This violates the [repository management][1] section of the Collection Requirements: [1]: https://docs.ansible.com/ansible/devel/community/collection_contributors/collection_requirements.html#repository-management > Every collection MUST have a public git repository. Releases of the collection MUST be tagged in said repository. This means that releases MUST be `git tag`ed and that the tag name MUST exactly match the Galaxy version number. Tag names MAY have a `v` prefix, but a collection's tag names MUST have a consistent format from release to release. > > Additionally, collection artifacts released to Galaxy MUST be built from the sources that are tagged in the collection's git repository as that release. Any changes made during the build process MUST be clearly documented so the collection artifact can be reproduced. Until this issue is fixed, ansible package releases will contain {OLD VERSION}, the previous version of this collection that was properly tagged. If the collection maintainers do not respond to this issue within a reasonable amount of time, the collection is subject to [Removal from ansible][2]. [2]: https://github.com/ansible-collections/overview/blob/main/removal_from_ansible.rst#collections-not-satisfying-the-collection-requirements -
Post a comment in #223 with a link to the issue.