That was a really good find. On Tue, Aug 7, 2018 at 2:40 PM Andy LoPresto <[email protected]> wrote:
> As per Joe’s advice, I am sharing this with the whole list. Everyone, > whether you have committer access or not, is an ally in preventing > unauthorized access. We are all involved in this project because we want to > improve the quality of the tool and the work/lives of anyone doing data > flow, and keeping our project as secure as possible is a key component of > that. Thanks everyone for your help. > > Andy LoPresto > [email protected] > *[email protected] <[email protected]>* > PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4 BACE 3C6E F65B 2F7D EF69 > > Begin forwarded message: > > *From: *Joe Witt <[email protected]> > *Subject: **Re: Things to be aware of* > *Date: *August 7, 2018 at 11:36:31 AM PDT > *To: *[email protected] > *Reply-To: *[email protected] > > I'd advocate sending that to the dev list. Good food for thought for all. > > On Tue, Aug 7, 2018 at 2:33 PM, Andy LoPresto > <[email protected]> wrote: > > Here’s Eric Holmes describing how he got commit access to homebrew in 30 > minutes. We should be vigilant that the same thing doesn’t happen here. > > > https://medium.com/@vesirin/how-i-gained-commit-access-to-homebrew-in-30-minutes-2ae314df03ab > > Andy LoPresto > [email protected] > [email protected] > PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4 BACE 3C6E F65B 2F7D EF69 > > >
