[go: nahoru, domu]
Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Proposal: triage security/issues/165 #15371

Open
lucasgonze opened this issue Jan 29, 2024 · 7 comments
Open

Proposal: triage security/issues/165 #15371

lucasgonze opened this issue Jan 29, 2024 · 7 comments
Assignees
@lucasgonze
Labels
type: proposal Proposals and design documents

Comments

@lucasgonze
Copy link
Contributor
lucasgonze commented Jan 29, 2024
edited
Loading

Problem

The researcher Nathaniel Bennett submitted a package of 10 items. Ensuring timely fixes will require a substantial amount of time.

Solution

Fund a bounty to perform the following tasks:

  • Review every item
  • Create ten tickets
  • Create an epic and possibly a kanban to manage the ten tickets
  • Project manage the process of getting these fixed, including reproduction, testing, coding, CI/CD, and CVE management.
  • Perform the engineering that makes sense for me personally

Non-goals

Engineering on code that is out of scope for me.

Acceptance

A vote will be taken in the TSC to consider the work has been completed.

On completion a payment of $4000 will be made.
@lucasgonze lucasgonze added the type: proposal Proposals and design documents label Jan 29, 2024
@lucasgonze
Copy link
Contributor Author

Votes so far, over in email:
Jordan: +1
Lucas: +1
Raphael: TBD
Pravin: TBD
Shubham: TBD
Yogesh: TBD

@lucasgonze
Copy link
Contributor Author

Yogesh: +1
Raphael: +1

The motion is carried.

@lucasgonze lucasgonze self-assigned this Feb 7, 2024
@lucasgonze
Copy link
Contributor Author
lucasgonze commented Mar 11, 2024
edited
Loading
  1. Acceptance of all items except for project management of fixes is ready.
  2. That remaining item must wait for 1.9.2.
  3. Jordan proposes that I can invoice 80% before then, hold off on 20%.
  4. Call for vote motion carried, and vote for the motion from Jordan and Lucas.

@lucasgonze
Copy link
Contributor Author
lucasgonze commented Mar 18, 2024
edited
Loading

Acceptance vote:
+1 Yogesh

The acceptance motion is carried.

@lucasgonze
Copy link
Contributor Author

Resources:

@lucasgonze
Copy link
Contributor Author

Moving this to the Done category in the Proposal Tracker because the TSC has accepted and payment has been made.

@lucasgonze lucasgonze reopened this Jun 3, 2024
@lucasgonze
Copy link
Contributor Author

Reopening because I incorrectly interpreted the state of this ticket. It should be:

  • Invoice for 80% of $4000 = $3,200
  • Move to Bottlenecked because waiting on 1.9.2 to start

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@lucasgonze lucasgonze

Labels
type: proposal Proposals and design documents
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@lucasgonze