)]}'
{"/PATCHSET_LEVEL":[{"author":{"_account_id":308,"name":"Thierry Carrez","email":"thierry@openstack.org","username":"ttx"},"change_message_id":"1e4d68855baa132e4da8fd462cda4af00d71e0d5","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"1692b50c_a16400bf","updated":"2025-05-28 08:40:48.000000000","message":"Hmm, actually... IIRC those scripts are run by Zuul jobs, so what would appear in the Signed-off-by line?","commit_id":"a8d849d42675b53e336e1095f7186c441559594b"},{"author":{"_account_id":308,"name":"Thierry Carrez","email":"thierry@openstack.org","username":"ttx"},"change_message_id":"e22f15a6cc275c1d1fa5cb377fb3053e5449e4d8","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"58a4e29e_02faa3cb","updated":"2025-06-23 15:31:27.000000000","message":"Looks like this is how everyone else is doing it, so let\u0027s do this","commit_id":"a8d849d42675b53e336e1095f7186c441559594b"},{"author":{"_account_id":308,"name":"Thierry Carrez","email":"thierry@openstack.org","username":"ttx"},"change_message_id":"5171ab2fc53b696e3447112e85b2159ccddce0df","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"b92e1f60_e9d9ff4d","updated":"2025-05-30 07:55:34.000000000","message":"OK, so for example \"OpenStack Release Bot\" would appear in the Signed-Off-By line... Do we know if it is acceptable for a non-human to do a DCO sign off?","commit_id":"a8d849d42675b53e336e1095f7186c441559594b"},{"author":{"_account_id":308,"name":"Thierry Carrez","email":"thierry@openstack.org","username":"ttx"},"change_message_id":"15cab164cc53c4404e3d46e5ed70859ed266d2c4","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"8dc47fe7_f900f696","updated":"2025-06-02 09:44:48.000000000","message":"Yeah, maybe that works... Tedious alternative would be that a human reviewer updates commit message to add a sign-off certifying that they vouch for the bot-generated patch.","commit_id":"a8d849d42675b53e336e1095f7186c441559594b"},{"author":{"_account_id":17685,"name":"Elod Illes","email":"elod.illes@est.tech","username":"elod.illes"},"change_message_id":"a2dd56a738c96aa0da04b6ae7615c99edf48731c","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"b394fddd_bf3ddcc1","updated":"2025-05-23 16:16:48.000000000","message":"thanks, LGTM o/","commit_id":"a8d849d42675b53e336e1095f7186c441559594b"},{"author":{"_account_id":5263,"name":"Jeremy Stanley","display_name":"fungi","email":"fungi@yuggoth.org","username":"fungi","status":"missing, presumed fed"},"change_message_id":"77d88ed70ba1f8140d23d9355b83e82eea90d678","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"009f287a_23866288","in_reply_to":"1692b50c_a16400bf","updated":"2025-05-28 18:31:27.000000000","message":"Exactly the same address as whatever the commit has for its Author and Committer metadata fields (varies depending on which Gerrit account a particular job is configured to authenticate with and push as).","commit_id":"a8d849d42675b53e336e1095f7186c441559594b"},{"author":{"_account_id":5263,"name":"Jeremy Stanley","display_name":"fungi","email":"fungi@yuggoth.org","username":"fungi","status":"missing, presumed fed"},"change_message_id":"0344a8e248fe4b9b34174cc5f0b559bf0fc678fd","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"6103ef2d_e2f7ee09","in_reply_to":"b92e1f60_e9d9ff4d","updated":"2025-05-30 17:06:19.000000000","message":"While that\u0027s a good question to pose to the foundation\u0027s legal counsel, my not-a-lawyer understanding is that the OpenStack project needs to declare what a Signed-Off-By trailer implies for contributions to its repositories, so could in theory state that automated systems add it for compatibility with the review platform\u0027s enforcement mechanisms. Perhaps mandating solutions like the child of this change to add an accompanying Generated-By trailer would make sense in that case.\n\nAs for the technical implementation, I\u0027m not aware of a Gerrit feature to exempt specific users from adding Signed-Off-By trailers if enforcement is enabled for a project, so I think it\u0027s going to come down to either finding a way to express that non-human Signed-Off-By is acceptable or not relying on Gerrit\u0027s enforcement feature (or going back to having humans manually propose these sorts of changes).","commit_id":"a8d849d42675b53e336e1095f7186c441559594b"}]}