As per Joe’s advice, I am sharing this with the whole list. Everyone, whether you have committer access or not, is an ally in preventing unauthorized access. We are all involved in this project because we want to improve the quality of the tool and the work/lives of anyone doing data flow, and keeping our project as secure as possible is a key component of that. Thanks everyone for your help.
Andy LoPresto [email protected] [email protected] PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4 BACE 3C6E F65B 2F7D EF69 > Begin forwarded message: > > From: Joe Witt <[email protected]> > Subject: Re: Things to be aware of > Date: August 7, 2018 at 11:36:31 AM PDT > To: [email protected] > Reply-To: [email protected] > > I'd advocate sending that to the dev list. Good food for thought for all. > > On Tue, Aug 7, 2018 at 2:33 PM, Andy LoPresto > <[email protected]> wrote: >> Here’s Eric Holmes describing how he got commit access to homebrew in 30 >> minutes. We should be vigilant that the same thing doesn’t happen here. >> >> https://medium.com/@vesirin/how-i-gained-commit-access-to-homebrew-in-30-minutes-2ae314df03ab >> >> Andy LoPresto >> [email protected] >> [email protected] >> PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4 BACE 3C6E F65B 2F7D EF69
signature.asc
Description: Message signed with OpenPGP using GPGMail
