-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 08/18/2012 09:24 PM, Lennart Regebro wrote: > On Sat, Aug 18, 2012 at 11:03 PM, Tres Seaver <tsea...@palladion.com> > wrote: >> Because the ability to check into svn.zope.org is based on a "chain >> of custody" managed by the ZF (web account, verified e-mail address, >> and SSH key). J. Random Hacker's account on Github has no such >> chain. > > Sure, but Random J Hacker shouldn't have write permission to the > repository, so I don't understand why that makes a difference.
The point is that the identity of the committer on Github is not tied to the ZF's machinery for contributions, which means that it cannot be used to preserve the "chain of custody" under the contributor agreement. Tres. - -- =================================================================== Tres Seaver +1 540-429-0999 tsea...@palladion.com Palladion Software "Excellence by Design" http://palladion.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAlAxCv4ACgkQ+gerLs4ltQ7hDgCfaQN7zti4rJ6vxCOGMPK/GLoc r8QAoJry8boBEq1l3OIrO61KrAQQwUT1 =F7Vv -----END PGP SIGNATURE----- _______________________________________________ Zope-Dev maillist - Zope-Dev@zope.org https://mail.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - https://mail.zope.org/mailman/listinfo/zope-announce https://mail.zope.org/mailman/listinfo/zope )