From: | Pacho Ramos <pacho@g.o> |
---|---|
To: | gentoo-dev@l.g.o |
Subject: | [gentoo-dev] About changing security policy to unCC maintainers when their are not needed |
Date: | Wed, 12 Sep 2012 18:01:06 |
Message-Id: | 1347472741.2365.5.camel@belkin4 |
1 | Hello |
2 | |
3 | Currently, package maintainers are CCed to security bugs when their are |
4 | needed. The problem is that, once maintainers add a fixed version and |
5 | tell security team they are ok to get it stabilized, maintainers are |
6 | kept CCed until bug is closed by security team. This usually means |
7 | getting a lot of mail after some time when security team discuss if a |
8 | GLSA should be filled or not, if security bot adds some comment... some |
9 | of that comments are applied to really old bugs that need no action from |
10 | maintainers. |
11 | |
12 | Maybe would be interesting to change the policy to unCC maintainers |
13 | again when their action is no longer required. |
14 | |
15 | What do you think? |
16 | |
17 | Thanks for your thoughts |
File name | MIME type |
---|---|
signature.asc | application/pgp-signature |
Subject | Author |
---|---|
Re: [gentoo-dev] About changing security policy to unCC maintainers when their are not needed | Jeroen Roovers <jer@g.o> |
[gentoo-dev] Re: About changing security policy to unCC maintainers when their are not needed | Michael Palimaka <kensington@g.o> |
Re: [gentoo-dev] About changing security policy to unCC maintainers when their are not needed | Alex Legler <a3li@g.o> |