[tripleo][core] gerrit breach and auditing all tripleo commits since Oct 01
Jeremy Stanley
fungi at yuggoth.org
Wed Oct 21 13:54:53 UTC 2020
On 2020-10-21 13:42:18 +0200 (+0200), Giulio Fidente wrote:
[...]
> do I understand correctly that our most immediate responsibility is to
> go through the list of commits in [5] and compare what is actually in
> the git repos with what was proposed in gerrit?
You don't need to compare them with what's in Gerrit (that was
already done automatically with a script). You need to double-check
those commits to make sure they're legitimate changes to the
software, likely ones you recall reviewing/approving over the past
few weeks.
--
Jeremy Stanley
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20201021/91e94834/attachment.sig>
More information about the openstack-discuss
mailing list