Archives
Archives
| From: | Pacho Ramos <pacho@g.o> |
|---|---|
| To: | gentoo-dev@l.g.o |
| Subject: | [gentoo-dev] About changing security policy to unCC maintainers when their are not needed |
| Date: | Wed, 12 Sep 2012 18:01:06 |
| Message-Id: | 1347472741.2365.5.camel@belkin4 |
| 1 | Hello |
| 2 | |
| 3 | Currently, package maintainers are CCed to security bugs when their are |
| 4 | needed. The problem is that, once maintainers add a fixed version and |
| 5 | tell security team they are ok to get it stabilized, maintainers are |
| 6 | kept CCed until bug is closed by security team. This usually means |
| 7 | getting a lot of mail after some time when security team discuss if a |
| 8 | GLSA should be filled or not, if security bot adds some comment... some |
| 9 | of that comments are applied to really old bugs that need no action from |
| 10 | maintainers. |
| 11 | |
| 12 | Maybe would be interesting to change the policy to unCC maintainers |
| 13 | again when their action is no longer required. |
| 14 | |
| 15 | What do you think? |
| 16 | |
| 17 | Thanks for your thoughts |
| File name | MIME type |
|---|---|
| signature.asc | application/pgp-signature |
| Subject | Author |
|---|---|
| Re: [gentoo-dev] About changing security policy to unCC maintainers when their are not needed | Jeroen Roovers <jer@g.o> |
| [gentoo-dev] Re: About changing security policy to unCC maintainers when their are not needed | Michael Palimaka <kensington@g.o> |
| Re: [gentoo-dev] About changing security policy to unCC maintainers when their are not needed | Alex Legler <a3li@g.o> |