Comments (41)
Can we schedule the first meeting for 20:00 UTC on Thursday, Dec 22nd? I know that the end of year is busy in many places, but if not then, the next candidate date is January 5, 2017.
Who would make that?
Pinging those who asked to join (we need an at-nodejs team!):
- @jasnell
- @mcollina
- @SomeoneWeird
- @thealphanerd
- @bengl
- @deian
- @mlfbrown
- @jbergstroem
- @dougwilson
- @ChALkeR
- @shigeki
- @evilpacket
- @roccomuso
- @joshgav
- @digitalinfinity
- @ofrobots
- @cjihrig
- @drifkin
- @mgalexander
- @vdeturckheim
from security-wg.
@sam-github invited as a manager.
from security-wg.
About an hour before the event I'll start up the meetings and fill in the TBA links above.
from security-wg.
We should probably avoid the days that any other WG meetings are on... but since there isn't yet a public calendar for all of them, I don't when that is.
We could do the same time as the CTC/TSC meetings on Thursday --- but on alternating weeks.
from security-wg.
This might have gotten lost in the PR storm, ping @rvagg @mhdawson @jasnell @nodejs/security
from security-wg.
See #8 for notes on what I recall was discussed at the collab summit/WG meeting.
from security-wg.
To start biweekly probably makes sense, over time I think many WG meet at something closer to montly.
I'd suggest that the same time as the TSC meetings on Thursday in the alternate weeks as a starting point. In the first meeting we could then discuss when to hold them.
The alternative is a doodle poll to find when most people can get together for the first meeting. I do use that for the Benchmarking meeting but find its better for less frequent meetings as having a frequent meeting at different times makes it hard for people to catch up.
I'm happy to help you get things bootstrapped.
from security-wg.
What time is the CTC/TSC meetings at, for those who may not know? :)
from security-wg.
TSC meetings are at 20:00 UTC … CTC meetings are a bit more complicated ;)
from security-wg.
from security-wg.
(I'm plus one for 22nd, hence the thumbs up)
from security-wg.
I'll do my best to attend on the 22nd.
from security-wg.
I can also do the 22nd at that time.
from security-wg.
I'll be away on holiday that week. but don't mind if you go ahead without me as @sam-github can fill me in.
from security-wg.
from security-wg.
Same as @evilpacket for me.
from security-wg.
The 22nd works for me.
from security-wg.
I'll be on holidays on the 22nd unfortunately, I'm sure somebody can fill me in if it goes ahead though.
from security-wg.
I'm also on holiday so would miss a December meeting, but will catch up in the new year.
@sam-github FWIW here are my notes from the discussion at the Collaboration Summit on this WG: https://docs.google.com/document/d/1-gY_sNt4CgySEale_13e2n9S9ucjuoM7djCq3Njal-0
from security-wg.
The 22nd should be good for me.
from security-wg.
It sounds like there is enough people who can attend to be worth having a meeting.
I was hoping @mhdawson would be able to walk me through the tech setup, @rvagg or @Fishrock123, can either of you do that? Or recommend someone who can?
from security-wg.
22 is good for me.
from security-wg.
@mikeal can you add @sam-github to the YouTube channel? Sam, then you can use Creator Studio > Live Events to schedule a live event and have it recorded.
from security-wg.
I need a their Google Plus account to add someone :)
from security-wg.
I can record it otherwise.
from security-wg.
@mikeal [email protected]
should be google plus enabled.
@jbergstroem maybe you can show me how to use Creator Studio on the day, so I know how to do it? @mhdawson was going to show me, but he can't make it.
from security-wg.
@joshgav You take great notes, thank you, I'm merging them in.
from security-wg.
@sam-github how about we try doing it just prior (say 1h) the meeting? I've only done it a few times but we should be able to get it together.
from security-wg.
Can someone add me to the calendar event for this meeting?
from security-wg.
from security-wg.
didn't get anything here either
from security-wg.
I'm willing to join to help with the "what kind of group do we want to be?" questions.
from security-wg.
I have not seen any invite either. Can anyone add [email protected] to the meeting please ?
from security-wg.
@vdeturckheim there's been no invites; but just save the date.
from security-wg.
@jbergstroem Are the links usable for you?
@ everyone else, ping, meeting details inserted in issue above, the participant hangout is https://hangouts.google.com/call/rxgxj4m4ufeyxls4yvfp2o4pvee
from security-wg.
@sam-github confirmed- I can access the hangout fine
from security-wg.
@sam-github: i'll verify in 10min.
from security-wg.
Thanks Hitesh.
from security-wg.
amusingly, now that i try to join again, it tells me that "The video call is full"
from security-wg.
We're looking into setting up an uberconference instead.
from security-wg.
YouTube video here: https://youtu.be/fewvQg-DaVk
from security-wg.
Related Issues (20)
- OpenSSF Scorecard Report Updated!
- April 3, 2024 security releases have not been announced on the nodejs-sec mailing list HOT 2
- dependabot suggesting pre-release update HOT 1
- Can we have "unsecure" features in Node.js? HOT 4
- Node.js Security team Meeting 2024-04-11 HOT 5
- OpenSSF Scorecard Report Updated!
- Collaborators Inactivity Policy Review HOT 3
- Question: Why do we have a `--experimental-policy`? HOT 4
- HackerOne page does not mention the threat model HOT 1
- Require optional PoC videos from hackers to help triaging reports
- Node.js Security team Meeting 2024-04-25 HOT 1
- More control over remote debugging (and killing) HOT 4
- Threat Model question about Permission Model HOT 2
- Security Vulnerability to report HOT 1
- OpenSSF Scorecard Report Updated!
- OpenSSF Scorecard Report Updated!
- Scores of vulnerability found in experimental features can be too high HOT 9
- Adding language to Bug Bounty program to differentiate "security features" from "defense in depth features" HOT 1
- Permission Model adoption from Package Managers HOT 3
- Node.js Security team Meeting 2024-05-09
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from security-wg.