As discussed in our last meeting it is time to kick off the triage team.
The job is described in the soon-to-be-merged process document.
Please state your interest in this issue. I plan to open a vote in another issue to have this team validated by the WG early next week (but anyone is still welcome to state interest after this date of courses).
As of OCT 12th meeting, pinging @brycebaril and @mgalexander.
Also, @cjihrig, @sam-github and I are already member of the HackerOne team. Let's consider it as an will to be a member of this team unless stated otherwise.
(edit): this is on: https://nodejs.org/en/security/#reporting-a-bug-in-a-third-party-module
(edit): Also @reedloden from HackerOne is currenlty a member of the organization. He offered to stay a bit until we are certain we handle the platform well. I think this is a good opportunity for us!
I'm interesting in helping with third party triage.
I will PR current membership batch later today.
cc @nodejs/security-wg anyone else?!
I'll help out best I can!
Hello team!
I'd love to take part in the triage
Awesome @grnd , please open a PR to add yourself in https://github.com/nodejs/security-wg/blob/master/processes/third_party_vuln_process.md
Added Danny and myself to the triage team https://github.com/nodejs/security-wg/pull/78
Thanks @vdeturckheim, @lirantal
I am interested in participating in this group. Note that I am also part of the node.js core triage team as well.
Hey @jasnell . I'd love to have you in this team! can you PR yoursefl to https://github.com/nodejs/security-wg/blob/master/processes/third_party_vuln_process.md#the-triage-team ?
I am interested in participating in this group.
I think the team was formed, and there is a process for joining, so this can be closed now. Please reopen if that is not the case.
Most helpful comment
I'll help out best I can!