| sean-k-mooney | second time lucky. | 14:30 |
|---|---|---|
| sean-k-mooney | hi folks i was looking at the keystone issue tracker before fileing a bug and i came across a public issue that likely shoudl have been private so i was wodnerign if we should at least mark it as public-secuirty | 14:31 |
| sean-k-mooney | it requires an admin to configure a feautre that is not enabeld by default | 14:31 |
| sean-k-mooney | but the report assert a path to gain roles in other porjects | 14:31 |
| sean-k-mooney | https://bugs.launchpad.net/keystone/+bug/2148599 | 14:31 |
| sean-k-mooney | that has been public for a month at this point so we are proably well past the point where we coudl make it private | 14:32 |
| sean-k-mooney | with that said the feature that its refesince was added 2 months ago | 14:32 |
| sean-k-mooney | so i think this is not in a release yet | 14:32 |
| sean-k-mooney | perhaps milestoen 1 | 14:32 |
| sean-k-mooney | hum no its in 2026.1 https://review.opendev.org/c/openstack/keystone/+/742235 | 14:33 |
| JayF | gouthamr: fungi: rosmaita: ^ | 14:40 |
| JayF | tl;dr looks like a class A was filed as a public bug, at least on the surface | 14:40 |
| fungi | thanks sean-k-mooney, JayF! i've switched it to public security type and added an incomplete security advisory bugtask | 14:55 |
| sean-k-mooney | i have flagged it in tnerally to one of the keystoen core sec member as well and they are goign to reivew it again | 14:56 |
| fungi | https://bugs.launchpad.net/keystone/+bug/2148825 is now public | 15:03 |
Generated by irclog2html.py 4.1.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!