Hi Alex,
Thanks for this very detailed and open answer! It’s great to see your thought process, and I’d love to share our perspective on these points.
1. The Importance of the "Production" Stage & SCA
To answer your rhetorical question about why ProGet's information matters: for us, the "Production" stage is actually the most critical one.
The main reason is SCA (Software Composition Analysis). ProGet is our source of truth for what is currently live. Having an accurate, reliable SCA report of what is actually in production is vital for our security and compliance teams. If a "backward" promotion happens by mistake in ProGet, it corrupts this data, and our production SCA reports become incorrect. That is the core driver behind my request: keeping the Production stage clean and trustworthy.
2. Specialized Tools vs. "All-in-One" Platforms (Siloed CI/CD)
You are absolutely right that we (like many others) will soon be consolidating data from various parts of our system to build a global, unified dashboard of our CI/CD pipeline, which is currently scattered across multiple tools.
However, even though "all-in-one" platform tools (like GitLab or GitHub) exist, they tend to do a little bit of everything but master none. They are generalists. We believe there will always be a need for highly specialized, robust tools like ProGet to act as the ultimate source of truth for packages and builds. That’s why we want ProGet's state to be as foolproof as possible.
3. The Complexity of "Pipelines" and "Releases"
Regarding your scrapped 2026 "build pipelines" feature: you made a very good point. Introducing a heavy "Release" concept might indeed go too far for ProGet and add unnecessary friction, especially since many organizations have complex scenarios (for instance, having multiple different versions of the same product running in production simultaneously). A rigid pipeline model makes this hard to represent.
This is why a simpler, "opinionated" safety guardrail—like just preventing backward promotion (or making stages "forward-only")—might be a lighter, more elegant way to solve the problem without over-engineering a full pipeline manager.
4. Let's Connect!
If you are interested, Alex, I would be more than happy to send you an email with more details about our tooling ecosystem, how we integrate ProGet, and what our workflows look like. It might help you "connect the dots" with real-world use cases as you think about the future of ProGet.
Let me know if you'd like that, and what the best email address would be to reach you!
Best regards,
Fabrice
️ Crucially, this restriction should apply to both the Web UI and the API to ensure that automated scripts or manual actions cannot bypass this safety guardrail.