| *** gyee has quit IRC | 00:48 | |
| *** rezroo has joined #openstack-security | 02:38 | |
| *** openstackstatus has joined #openstack-security | 02:56 | |
| *** ChanServ sets mode: +v openstackstatus | 02:56 | |
| *** tesseract has joined #openstack-security | 08:05 | |
| *** Jackneill has joined #openstack-security | 08:09 | |
| *** tesseract has quit IRC | 08:38 | |
| *** tesseract has joined #openstack-security | 08:39 | |
| *** tesseract has quit IRC | 09:58 | |
| *** tesseract has joined #openstack-security | 10:11 | |
| *** rezroo has quit IRC | 10:28 | |
| *** rezroo has joined #openstack-security | 14:28 | |
| *** dave-mccowan has joined #openstack-security | 14:50 | |
| gagehugo | security meeting now in openstack-meeting | 15:01 |
|---|---|---|
| fungi | gagehugo: after grepping the ml archives, the only mentions have been in your meeting summaries: http://lists.openstack.org/pipermail/openstack-discuss/2019-August/008973.html and a couple of tc updates about open governance changes, so we may need to take some extra care with introducing it more thoroughly. want to draft something in an etherpad? if so, i'm happy to review it and suggest stuff | 15:34 |
| gagehugo | sure | 15:56 |
| fungi | cool, when you have something i'll make going over it a top priority so as to not slow you up too much | 15:59 |
| gagehugo | ok, I'll try to get something written up this afternoon | 16:00 |
| fungi | at your convenience. thanks again! | 16:01 |
| *** gyee has joined #openstack-security | 16:14 | |
| *** tesseract has quit IRC | 17:00 | |
| *** Jackneill has quit IRC | 17:43 | |
| *** memerman has joined #openstack-security | 18:47 | |
| memerman | badzia | 18:48 |
| memerman | @everyone | 18:49 |
| *** memerman has quit IRC | 18:50 | |
| gagehugo | fungi: started something here: https://etherpad.openstack.org/p/vmt-process-update | 19:07 |
| gagehugo | just brain dumping atm, will do some wordsmithing next probably | 19:08 |
| fungi | thanks, i hacked a little at it too | 19:14 |
| gagehugo | fungi: anything else you feel needs added? | 20:40 |
| fungi | lookin' | 20:41 |
| gagehugo | thanks for getting the update current private bugs | 20:42 |
| gagehugo | Update the report == Feb 4th or a couple days ago? | 20:43 |
| fungi | i think what you have there is fine | 20:49 |
| fungi | as far as points we need to make at least | 20:49 |
| fungi | updating the reports will happen once you send this e-mail to openstack-discuss | 20:50 |
| fungi | as i comment in the bugs and update the embargo leader on their descriptions, i'll start the 90-day clock at that point | 20:51 |
| fungi | so that nobody can complain we shorted them on their 90-day warning | 20:51 |
| gagehugo | ah ok | 21:12 |
| gagehugo | we should probably say that | 21:12 |
| gagehugo | something like "as of today, after 90 days all current embargo'd bugs will be made public | 21:12 |
| fungi | yep, that's what i intend to put in each bug comment | 21:14 |
| fungi | it may end up being slightly more than 90 days from your e-mail, as i want to link it within each comment for clarity | 21:14 |
| fungi | but it'll be 90 days from when i comment in each bug | 21:15 |
| fungi | (i also may not get them all done the exact same day depending on how generous launchpad is feeling that day) | 21:15 |
| gagehugo | ok | 21:15 |
| gagehugo | I can probably tackle some too | 21:15 |
| fungi | cool, thanks | 21:15 |
| gagehugo | Shall I send it out then? | 21:17 |
| fungi | yeah, lgtm | 21:18 |
| fungi | i can start doing bug updates tomorrow | 21:18 |
| fungi | i'm behind schedule to review talk submissions for the open cloud workshop in a couple weeks, and need to get back to them | 21:19 |
| gagehugo | haha | 21:23 |
| gagehugo | ok Ill send it out | 21:23 |
| fungi | thanks again! | 21:28 |
| gagehugo | fungi: one last quick ?, does that title look fine in the pad? | 21:30 |
| fungi | checking | 21:37 |
| fungi | maybe spell out vulnerability management team? | 21:38 |
| fungi | and you can drop the word "new" | 21:38 |
| fungi | all changes are new changes ;) | 21:38 |
| fungi | really you don't need the word team either | 21:38 |
| fungi | [security] Vulnerability management policy changes | 21:38 |
| fungi | something like that | 21:39 |
| gagehugo | ok lol | 21:40 |
| fungi | so exactly what you had, just, you know, completely different | 21:41 |
| fungi | ;) | 21:41 |
| fungi | it's your call of course. and thanks again for sending this out | 21:41 |
| gagehugo | anytime, it's sent | 21:42 |
| fungi | yay! at least now i know what i'm (probably) working on tomorrow | 21:52 |
| *** Jackneill has joined #openstack-security | 22:29 | |
| *** Jackneill has quit IRC | 22:39 | |
| *** dave-mccowan has quit IRC | 23:51 | |
| *** dave-mccowan has joined #openstack-security | 23:53 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!