Emilien Macchi wrote: > I would like the feedback from the community about applying (or not) to > the vulnerability:managed tag [1]. > Being part of OpenStack ecosystem and the big tent, Puppet OpenStack > project might want to follow some other projects in order to be > consistent in Security management procedures.
Hi Emilien, This tag is not managed by the TC, it's directly managed by the Vulnerability Management Team (under the Security project team). It's their decision to evaluate if your code is mature enough and if your team is organized enough that they feel confident they can tackle the additional workload. You can find their contact details at: https://security.openstack.org/ -- Thierry Carrez (ttx)
signature.asc
Description: OpenPGP digital signature
__________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: [email protected]?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
