Automatic Updates Initiative meeting on Nov 14, 2023

Created on 14 November 2023, about 1 year ago

Updated 4 January 2024, 12 months ago

This meeting:
➤ Is for core developers, initiative contributors, the Drupal Association and anyone interested in the initiative.
➤ Usually happens every other Tuesday at 1700 UTC.
➤ Is done over chat.
➤ Happens in threads, which you can follow to be notified of new replies even if you don’t comment in the thread. You may also join the meeting later and participate asynchronously!
➤ Has a public agenda anyone can add to
➤ *Transcript will be exported and posted* to the agenda issue. For anonymous comments, start with a :bust_in_silhouette: emoji. To take a comment or thread off the record, start with a :no_entry_sign: emoji.

Transcript

0️⃣ Who is here today? Comment in the thread below to introduce yourself and tell us why you are joining us.Maybe for fun let us know if you're doing anything fun in Nov (Thanksgiving for the Americans, maybe something else for the rest of the world).

1️⃣ Do you have any topics to propose for the meeting today? Feel free to propose them in this thread, and then I will give them their own unique threads for discussion. Conversation moving slow? Go ahead and open your own thread in the next numeric order.

2️⃣ Rugged Issues:In the last 24 hours it looks like @ergonlogic has checked off all but one of the items in the issue summary of: https://gitlab.com/rugged/rugged/-/issues/131

3️⃣ Drumm is out this week, but has been working on the Core signing mirror, and getting Satis working properly for our use case.

4️⃣ Security AuditsNon-Drupal CodeOur auditor is working on documentation of a thread model diagramThey are assembling a POC of a medium risk vulnThey are working on some additional unit tests to contribute back Drupal code@mlhess and I met with an auditor to work on Drupal code side. They also have prior TUF implementation audit experience which is great. They are likely to have a mid-Jan to mid-Feb window to complete the work. Price looks to be in our budget ballpark.

5️⃣ Client side updates?

6️⃣ Package Manager/AutoUpdates module updates

Participants:

xjm, chrisfromredfin, ergonlogic, hestenet

📌 Task

Status

Fixed

Version

2.0

Component

Meetings

Created by

🇺🇸United States hestenet Portland, OR 🇺🇸

Live updates comments and jobs are added and updated live.

contrib-only

Comments & Activities

Issue created by @hestenet
Status changed to Fixed about 1 year ago5:42pm 8 December 2023
Comment about 1 year ago →
🇺🇸United States phenaproxima Massachusetts
This old meeting is nearly a month old, and is therefore fixed.
Comment about 1 year ago →
🇺🇸United States chrisfromredfin Portland, Maine
hestenet → credited chrisfromredfin → .
Comment about 1 year ago →
🇨🇦Canada ergonlogic Montréal, Québec 🇨🇦
hestenet → credited ergonlogic → .
Comment about 1 year ago →
🇺🇸United States xjm
hestenet → credited xjm → .
Comment about 1 year ago →
🇺🇸United States hestenet Portland, OR 🇺🇸
Comment about 1 year ago →
🇺🇸United States xjm
Amending attribution.
Status changed to Fixed 12 months ago8:49am 4 January 2024
Comment 12 months ago →
System Message
Automatically closed - issue fixed for 2 weeks with no activity.

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024