15:00:20 #startmeeting horizon 15:00:20 Meeting started Wed Jul 20 15:00:20 2022 UTC and is due to finish in 60 minutes. The chair is vishalmanchanda. Information about MeetBot at http://wiki.debian.org/MeetBot. 15:00:20 Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. 15:00:20 The meeting name has been set to 'horizon' 15:01:28 o/ 15:01:34 hi 15:01:51 hello everyone 15:03:46 tmazur: ping. 15:03:53 o/ 15:03:54 ok let's start the meeting. 15:04:09 Agenda of meeting can be found here https://etherpad.opendev.org/p/horizon-release-priorities#L39 15:04:36 #topic Notices 15:04:49 A Casual reminder about the schdeule. 15:05:22 This week is R-11 week. 15:05:44 For more info. about the schedule please refer https://releases.openstack.org/zed/schedule.html 15:06:29 I have no more announcements for this week. 15:07:02 If anyone else wants to make any announcements, please go ahead. 15:07:46 none from me 15:07:58 moving to next topic. 15:08:35 #topic On-Demand Agenda 15:08:47 horizon security contacts 15:09:38 I guess it is added by amotoki 15:09:53 Looking at the Vulnerability_management wiki doc. primary security contacts person points to Ivan. 15:09:56 yes, I added it. 15:10:10 https://wiki.openstack.org/wiki/CrossProjectLiaisons#Vulnerability_management 15:10:24 vishalmanchanda: as you may know, yessterday we were asked about our primary sec contact and coresec members. 15:10:55 e0ne is the current primary contact, but he is no longer very active in hoirzon 15:10:56 but as we know Ivan is not much active in the horizon for the past few months. 15:11:12 amotoki: please go ahead. 15:11:16 so it may be time to switch our sec contact. 15:11:24 amotoki: +1. 15:12:01 In addition, looking at the horizon-coresec member, Ivan and I are the only active members, so it needs to be updated too. 15:12:02 So I was thinking if someone else from the horizon coresec team can volunteer for primary security contacts. 15:12:09 amotoki: yes. 15:12:29 I can be the primary contact as perhaps I am most familiar with the process right now 15:12:43 amotoki: great. 15:13:56 Also below is list of members who are not active in horizon from long time: 15:13:56 David Lyle 15:13:56 Gabriel Hurley 15:13:56 Matthias Runge 15:13:56 Paul McMillan 15:13:58 re the coresec members, my proposal is to have all four active cores in https://launchpad.net/~horizon-coresec/+members 15:14:23 and drop non-active members who no longer work on horizon 15:14:35 amotoki: I am fine with that. 15:15:31 FYI: the vulnerability management process is explained at https://security.openstack.org/vmt-process.html 15:16:07 rdopiera: tmazur : wdys? 15:16:09 all public bugs cannot be switched back to private (even if it is done by mistake) 15:17:34 Sounds fine for me 15:18:01 makes sense 15:19:07 if you have questions on the process, feel free to ping me. we are a small team, so it would be nice that everyone can access sec bugs 15:19:35 amotoki: thank you 15:19:46 amotoki: thanks. 15:20:25 okay, thank. I will update the sec contact in the wiki and the launchpad team. 15:20:54 s/thank/thanks/ :p 15:21:01 cool. 15:22:05 Does anyone have any other topic to discuss? 15:22:30 rdopiera: can we merge your "setup and teardown" patches for integration tests? 15:22:51 amotoki: I don't see why not 15:23:16 rdopiera: thanks. I just would like to confirm the status of them. I will review them. 15:23:59 yeah, with the CI failing, it's hard to tell if the patch is still WIP 15:24:59 yeah, anyway let's see what happens 15:25:49 famous last words 15:26:15 :D 15:26:50 :D 15:28:12 If nothing more to discuss, we can end this meeting. 15:28:40 no more from me 15:30:05 Thanks everyone for joining! 15:30:11 See you next week. 15:30:19 #endmeeting