Skip to content

Adding limit options for the package registry #20471

New issue
New issue
Open
Open
Adding limit options for the package registry#20471
Labels
topic/packagestype/featureCompletely new functionality. Can only be merged if feature freeze is not active.type/proposalThe new feature has not been accepted yet but needs to be discussed first.
@Mai-Lapyst

Description

@Mai-Lapyst
Mai-Lapyst
opened on Jul 24, 2022

Feature Description

Currently, when the package registry is enabled, all users are allowed to upload packages to their profile. This cannot currently be limited to prevent users from uploading arbitary numbers of packages or similar exploits.

Because there exists limitation options for repositories & organizations, packages should have similar options as well.

My idea consists of three limiting options:

  • MAX_CREATION_LIMIT limits the amount an user/org can have overall
  • MAX_UNLINKED_LIMIT limits the amount an user/org can have that are not linked to an repository
  • MAX_PACKAGES_PER_REPO_LIMIT limits the amount an repository can have

It could also be added that individual settings on users/org's and repos are possible to allow exceptions to the default limits provided by the config.

If there are no takers, I would submit an PR for this feature.

Screenshots

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    topic/packagestype/featureCompletely new functionality. Can only be merged if feature freeze is not active.type/proposalThe new feature has not been accepted yet but needs to be discussed first.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions