In git, how do I verify that a merge upstream master commit does not contain any additional diffs? Say I want to verify that the person didn't do anything 'sneaky' besides actually merge the changes from the upstream master branch.
I want to verify that the only diffs come from the other commits they made; that they did not perform an 'evil merge'.
Is there a way to verify that no additional changes were made during the merge step?
Or better yet: show me the potential 'evil merge' diffs so I can see for myself what extra work might have been done?
Example scenario:
P1---P2 P3---P4---P5---P6
/ \ / / \
A---B---C---D--E--------F---------G master
\ /
C1---C2
P1..P2: First pull request
C1..C2: My working branch
P3..P4: More work done inbetween
P5: The commit that merges in master branch changes
P6: More regular work
- Someone sends a pull request to my repo (
P1..P2) - The pull request is fantastic, and I merge it (
E) - I do some further development (
C1..C2), integrate my own branch to master (F), and publish - The other person has done more work in the meantime (
P3..P4) - They merge upstream changes into their local repo (
P5), makes more changes (P6), and send a second pull request - Can I verify that they didn't sneak in any extra diffs during the merge (
P5)?
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 在下西门庆 的文章《How to verify a git merge contains no extra change》','https://www.manongdao.com/article-638199.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}