[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
Re: [cbi-dev] Open Source Software Supply Chain Best Practices at the Eclipse Foundation
|
Thanks for your feedbacks. The goal is to disseminate it more widely, but I guess to have it being reviewed here first is a good first step.
Let's say that in a week or two (or more if there are intense discussions about the content), I'll forward it to cross-projects. WDYT?
> On 5 Oct 2021, at 16:09, Mickael Istria <mistria@xxxxxxxxxx> wrote:
>
> Thanks for this document. It's a very valuable resource for all developers to get familiar with the possible entry-points of a supply-chain attack. Do you plan to share it more widely to all committers soon? Or are you waiting for some "milestone" before doing so?
> _______________________________________________
> cbi-dev mailing list
> cbi-dev@xxxxxxxxxxx
> To unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/cbi-dev
Attachment:
signature.asc
Description: Message signed with OpenPGP