Tuesday, 2019-03-26

*** gyee has quit IRC00:13
*** markvoelker has joined #openstack-security05:17
*** Luzi has joined #openstack-security06:43
*** pcaruana has joined #openstack-security07:10
*** rcernin has quit IRC08:36
*** rcernin has joined #openstack-security09:45
*** Luzi has quit IRC09:52
*** rcernin has quit IRC10:24
*** markvoelker has quit IRC12:31
*** Luzi has joined #openstack-security13:15
*** Luzi has quit IRC14:23
*** mgoddard has joined #openstack-security15:58
mgoddardHello, we have a security issue in the Kayobe project. We've had a look through some of https://security.openstack.org/, and are just wondering how much of the process, if any, applies to an unofficial project16:01
gagehugomgoddard: this one? https://storyboard.openstack.org/#!/story/200529916:04
mgoddardgagehugo: that's it16:04
gagehugoheh plaintext passwords16:06
mgoddardI realise we've already gone public with the bug report and fix, skipping most of the steps16:06
gagehugoI'm not sure if storyboard has all the private security bug features yet or how that works tbh16:08
mgoddardtrying to create a new bug, there was an option to make it private16:09
mgoddardbut that horse has bolted :)16:09
gagehugoyup heh16:09
mgoddardso really just wondering if there's anything we should do to communicate this issue beyond the bug report?16:10
mgoddarddo OSSAs apply to unofficial projects?16:10
gagehugoI don't think so specifically16:10
gagehugobut we can always help out when needed16:10
gagehugoI will take a look at the fix16:11
gagehugoit's good that a fix was made pretty quickly16:12
mgoddardgreat, thanks16:19
*** gyee has joined #openstack-security16:25
*** pcaruana has quit IRC21:33
*** rcernin has joined #openstack-security22:38
*** gyee has quit IRC23:53

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!