On 23/12/2020 05:29, r00t 4dm wrote: > Hello, > > Generally speaking, what conditions need to be met to join ASF security team?
- ASF member [1] - Demonstrated understanding of security vulnerabilities over an extended period of time (typically via membership of the security team for one or more ASF projects) - Nomination by the existing members of the security team - Agreement of the ASF Board of Directors (the Security Team is a board committee) To provide some context: - each current member of the security team has, on average, been involved with the ASF for more than 15 years - the latest addition to the security team has been involved with the foundation for more than 6 years - 60% of the team are current or former directors of the foundation To put it another way, information on current, unpatched security vulnerabilities in Apache products is some of the most sensitive information the foundation handles and membership of the security team is managed accordingly. Mark [1] http://www.apache.org/foundation/how-it-works.html#roles > > Regards, r00t4dm > Cloud-Penetrating Arrow Lab of Meituan Corp Information Security Department > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: dev-unsubscr...@community.apache.org > For additional commands, e-mail: dev-h...@community.apache.org > --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@community.apache.org For additional commands, e-mail: dev-h...@community.apache.org
