This is a quick note to announce that the OpenStack gerrit system supports
a SecurityImpact tag. If you are familiar with the DocImpact tag, this
works in a similar fashion.
Please use this in the commit message for any commits that you feel would
benefit from a security review. Commits with
On Fri, Jun 21, 2013 at 12:08:43PM -0400, Yun Mao wrote:
Interesting. Does it automatically make the commit in stealth mode so
that it's not seen in public? Thanks,
This tag is about asking for design input / code review from people with
security expertize for new work. As such the code is all