From 775cfe8299ea5474f605935469359a9d1cdb49dc Mon Sep 17 00:00:00 2001
From: Sebastian Thiel <sebastian.thiel@icloud.com>
Date: Thu, 2 Jan 2025 08:20:58 +0100
Subject: [PATCH 1/7] update scripts to allow release (copied from smmap)

---
 Makefile         | 42 +++++++-----------------------------------
 build-release.sh | 26 ++++++++++++++++++++++++++
 2 files changed, 33 insertions(+), 35 deletions(-)
 create mode 100755 build-release.sh

diff --git a/Makefile b/Makefile
index a0a2d0e..20436bb 100644
--- a/Makefile
+++ b/Makefile
@@ -1,40 +1,12 @@
-PYTHON = python3
-SETUP = $(PYTHON) setup.py
-TESTFLAGS =
+.PHONY: all clean release force_release
 
-all::
+all:
 	@grep -Ee '^[a-z].*:' Makefile | cut -d: -f1 | grep -vF all
 
-release:: clean
-	# Check if latest tag is the current head we're releasing
-	echo "Latest tag = $$(git tag | sort -nr | head -n1)"
-	echo "HEAD SHA       = $$(git rev-parse head)"
-	echo "Latest tag SHA = $$(git tag | sort -nr | head -n1 | xargs git rev-parse)"
-	@test "$$(git rev-parse head)" = "$$(git tag | sort -nr | head -n1 | xargs git rev-parse)"
-	make force_release
+clean:
+	rm -rf build/ dist/ .eggs/ .tox/
 
-force_release:: clean
-	git push --tags
-	python3 -m build --sdist --wheel
+force_release: clean
+	./build-release.sh
 	twine upload dist/*
-
-doc:: 
-	make -C doc/ html
-
-build::
-	$(SETUP) build
-	$(SETUP) build_ext -i
-
-build_ext::
-	$(SETUP) build_ext -i
-	
-install::
-	$(SETUP) install
-
-clean::
-	$(SETUP) clean --all
-	rm -f *.so
-
-coverage:: build
-	PYTHONPATH=. $(PYTHON) -m pytest --cov=gitdb gitdb
-
+	git push --tags origin master
diff --git a/build-release.sh b/build-release.sh
new file mode 100755
index 0000000..5840e44
--- /dev/null
+++ b/build-release.sh
@@ -0,0 +1,26 @@
+#!/bin/bash
+#
+# This script builds a release. If run in a venv, it auto-installs its tools.
+# You may want to run "make release" instead of running this script directly.
+
+set -eEu
+
+function release_with() {
+    $1 -m build --sdist --wheel
+}
+
+if test -n "${VIRTUAL_ENV:-}"; then
+    deps=(build twine)  # Install twine along with build, as we need it later.
+    echo "Virtual environment detected. Adding packages: ${deps[*]}"
+    pip install --quiet --upgrade "${deps[@]}"
+    echo 'Starting the build.'
+    release_with python
+else
+    function suggest_venv() {
+        venv_cmd='python -m venv env && source env/bin/activate'
+        printf "HELP: To avoid this error, use a virtual-env with '%s' instead.\n" "$venv_cmd"
+    }
+    trap suggest_venv ERR  # This keeps the original exit (error) code.
+    echo 'Starting the build.'
+    release_with python3 # Outside a venv, use python3.
+fi

From 26209528a0303e47c88c174184adbf25d206a824 Mon Sep 17 00:00:00 2001
From: Eliah Kagan <degeneracypressure@gmail.com>
Date: Sun, 5 Jan 2025 03:21:33 -0500
Subject: [PATCH 2/7] Add SECURITY.md, referencing GitPython's

Along with https://github.com/gitpython-developers/smmap/pull/59
and a forthcoming related PR in GitPython, this will fix #116.
---
 SECURITY.md | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..95389ff
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,3 @@
+# Security Policy
+
+See [GitPython](https://github.com/gitpython-developers/GitPython/blob/main/SECURITY.md). Vulnerabilities found in `gitdb` can be reported there.

From 4fe56572894f9668c1ffd0808c96aed27c65e584 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 Jan 2025 10:38:13 +0000
Subject: [PATCH 3/7] Bump gitdb/ext/smmap from `f31bfa3` to `8f82e6c`

Bumps [gitdb/ext/smmap](https://github.com/gitpython-developers/smmap) from `f31bfa3` to `8f82e6c`.
- [Release notes](https://github.com/gitpython-developers/smmap/releases)
- [Commits](https://github.com/gitpython-developers/smmap/compare/f31bfa378c8840d38d31e7e11ef2b84f191a491e...8f82e6c19661f9b735cc55cc89031a189e408894)

---
updated-dependencies:
- dependency-name: gitdb/ext/smmap
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 gitdb/ext/smmap | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gitdb/ext/smmap b/gitdb/ext/smmap
index f31bfa3..8f82e6c 160000
--- a/gitdb/ext/smmap
+++ b/gitdb/ext/smmap
@@ -1 +1 @@
-Subproject commit f31bfa378c8840d38d31e7e11ef2b84f191a491e
+Subproject commit 8f82e6c19661f9b735cc55cc89031a189e408894

From b4fd74ce8e28c372c511db2e0a491fa8b67c93f4 Mon Sep 17 00:00:00 2001
From: Eliah Kagan <degeneracypressure@gmail.com>
Date: Sun, 26 Jan 2025 11:51:11 -0500
Subject: [PATCH 4/7] Improve description of backoff sequence in db.loose

The sequence of backoff wait times used in `gitdb.db.loose` is
quadratic rather than exponential, as discussed in:
https://github.com/gitpython-developers/gitdb/pull/115#discussion_r1903215598

This corrects the variable name by making it more general, and the
comment by having it explicitly describe the backoff as quadratic.

This is conceptually related to GitoxideLabs/gitoxide#1815, but
this is a non-breaking change, as no interfaces are affected: only
a local variable and comment.
---
 gitdb/db/loose.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/gitdb/db/loose.py b/gitdb/db/loose.py
index 03d387e..e6765cd 100644
--- a/gitdb/db/loose.py
+++ b/gitdb/db/loose.py
@@ -230,16 +230,16 @@ def store(self, istream):
             # end rename only if needed
 
             # Ensure rename is actually done and file is stable
-            # Retry up to 14 times - exponential wait & retry in ms.
+            # Retry up to 14 times - quadratic wait & retry in ms.
             # The total maximum wait time is 1000ms, which should be vastly enough for the
             # OS to return and commit the file to disk.
-            for exp_backoff_ms in [1, 4, 9, 16, 25, 36, 49, 64, 81, 100, 121, 144, 169, 181]:
+            for backoff_ms in [1, 4, 9, 16, 25, 36, 49, 64, 81, 100, 121, 144, 169, 181]:
                 with suppress(PermissionError):
                     # make sure its readable for all ! It started out as rw-- tmp file
                     # but needs to be rwrr
                     chmod(obj_path, self.new_objects_mode)
                     break
-                time.sleep(exp_backoff_ms / 1000.0)
+                time.sleep(backoff_ms / 1000.0)
             else:
                 raise PermissionError(
                     "Impossible to apply `chmod` to file {}".format(obj_path)

From d7a7b3b1d398b3c70997b2971769560ff6bf7491 Mon Sep 17 00:00:00 2001
From: Eliah Kagan <degeneracypressure@gmail.com>
Date: Fri, 30 May 2025 16:18:10 -0400
Subject: [PATCH 5/7] Specify explicit `contents: read` workflow permissions

This change is analogous to gitpython-developers/GitPython#2033.
See also gitpython-developers/smmap#60.
---
 .github/workflows/pythonpackage.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/pythonpackage.yml b/.github/workflows/pythonpackage.yml
index 907698d..8fd6369 100644
--- a/.github/workflows/pythonpackage.yml
+++ b/.github/workflows/pythonpackage.yml
@@ -5,6 +5,9 @@ name: Python package
 
 on: [push, pull_request, workflow_dispatch]
 
+permissions:
+  contents: read
+
 jobs:
   build:
 

From 8d57ac71980d7fc688acbdd8a45e1f7e0023bc81 Mon Sep 17 00:00:00 2001
From: Eliah Kagan <degeneracypressure@gmail.com>
Date: Fri, 30 May 2025 16:34:24 -0400
Subject: [PATCH 6/7] Add CI test job for no-GIL ("threaded") Python 3.13

See https://github.com/gitpython-developers/GitPython/issues/2005.

The rationale is that, while this is probably less important to do
in gitdb and smmap, any failure that arises for this in GitPython
would likely raise the question of whether a correspond problem has
begun to occur in gitdb and smmap. (Both gitdb and smmap provide
helpers used in GitPython even when the in-memory object database
is not used, and failures may plausibly occur for reasons other
than code changes because of the finicky nature of concurrency bugs
and the potential for interactions affected by the runner image.)
---
 .github/workflows/pythonpackage.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/pythonpackage.yml b/.github/workflows/pythonpackage.yml
index 8fd6369..c5d7e2b 100644
--- a/.github/workflows/pythonpackage.yml
+++ b/.github/workflows/pythonpackage.yml
@@ -15,7 +15,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        python-version: ["3.8", "3.9", "3.10", "3.11", "3.12", "3.13"]
+        python-version: ["3.8", "3.9", "3.10", "3.11", "3.12", "3.13", "3.13t"]
         os: [ubuntu-latest]
         experimental: [false]
         include:

From 18b437b65b339f0d76a3c07f4cef1de4fbcb527a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 2 Jun 2025 11:11:28 +0000
Subject: [PATCH 7/7] Bump gitdb/ext/smmap from `8f82e6c` to `c6b53d3`

Bumps [gitdb/ext/smmap](https://github.com/gitpython-developers/smmap) from `8f82e6c` to `c6b53d3`.
- [Release notes](https://github.com/gitpython-developers/smmap/releases)
- [Commits](https://github.com/gitpython-developers/smmap/compare/8f82e6c19661f9b735cc55cc89031a189e408894...c6b53d35deb82a38d5d07ca7712c1334a7a10c10)

---
updated-dependencies:
- dependency-name: gitdb/ext/smmap
  dependency-version: c6b53d35deb82a38d5d07ca7712c1334a7a10c10
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 gitdb/ext/smmap | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gitdb/ext/smmap b/gitdb/ext/smmap
index 8f82e6c..c6b53d3 160000
--- a/gitdb/ext/smmap
+++ b/gitdb/ext/smmap
@@ -1 +1 @@
-Subproject commit 8f82e6c19661f9b735cc55cc89031a189e408894
+Subproject commit c6b53d35deb82a38d5d07ca7712c1334a7a10c10