Sig-release: Auditing Release Managers who are responsible for upholding the security embargo

Created on 6 Aug 2019  Â·  17Comments  Â·  Source: kubernetes/sig-release

We have a few contributors within the Release Managers group, who must agree to uphold the Kubernetes security embargo due to the sensitive communications they receive.

While some of this is assumed, I want to capture this in an issue for future auditability.

Already agreed

Patch Release Team

SIG Chairs

(ref: https://groups.google.com/d/msg/kubernetes-security-discuss/EYpUoONgLUA/DNAc2aa2EwAJ)

Pending

Build Admins

Future Patch Release Team members

(ref: https://github.com/kubernetes/sig-release/issues/737)

I want to file and close this before completing the mailing list membership changes mentioned in https://github.com/kubernetes/sig-release/issues/732.

If you are assigned to this issue, please respond to this issue stating that you agree to abide by the guidelines set forth in the Security Release Process.

If you're not assigned, I'm only tagging you for visibility.

/assign @listx @sumitranr @dougm @idealhack
cc: @kubernetes/release-engineering @kubernetes/product-security-committee @kubernetes/sig-release-admins
/kind documentation
/area release-eng
/sig release
/milestone v1.16
/priority important-soon

arerelease-eng kindocumentation prioritimportant-soon sirelease

All 17 comments

I agree to uphold the Kubernetes security embargo.

I agree to uphold the Kubernetes security embargo.

I agree to uphold the Kubernetes security embargo.

btw, it seems we need to extend the list since we now have a new Build Admin, @ps882, welcome!

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

/remove-lifecycle stale
/milestone v1.18

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

/assign

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten

New @kubernetes/build-admins -- please respond to this issue stating that you agree to abide by the guidelines set forth in the Security Release Process.

/assign @spiffxp @BenTheElder @amwat @MushuEE

I agree to uphold the Kubernetes security embargo.

I agree to uphold the Kubernetes security embargo.

I agree to uphold the Kubernetes security embargo.

I agree to uphold the Kubernetes security embargo.

On Thu, Aug 6, 2020 at 11:55 AM Amit Watve notifications@github.com wrote:

I agree to uphold the Kubernetes security embargo.

—
You are receiving this because you were assigned.
Reply to this email directly, view it on GitHub
https://github.com/kubernetes/sig-release/issues/746#issuecomment-670134158,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/AAHADK4UAOV5XKSPRJCYG5TR7L4BTANCNFSM4IJQDDVQ
.

Good to go!
/close

@justaugustus: Closing this issue.

In response to this:

Good to go!
/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

Was this page helpful?
0 / 5 - 0 ratings