sbp commented on issue #236: URL: https://github.com/apache/tooling-trusted-releases/issues/236#issuecomment-4307249077
We decided on the following approach: * Leave the current vote resolution mechanism as an option for anybody who is not holding a security vote. This will continue to have the current drawbacks such as not being able to display email addresses in full when they can only be derived from `lists.apache.org`. * Add an option for anybody who is not holding a security vote to use a hybrid version of the _Trusted Votes_ (TV) mechanism through ATR. This will continue to allow and tally non-binding emailed votes, but no emailed votes will be counted as binding, even if sent by users whose votes would otherwise be binding. Binding votes will be required to be cast on ATR, and must of course still be cast by voters whose votes are binding. * Security votes will require TV, and will not support tabulation of non-binding votes. In a security vote, only binding votes can be cast, and they must be cast on ATR. The private vote thread will still be updated by ATR, but ATR will not read the thread. This requires no interaction with `lists.apache.org` _for the TV part_. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
