[Zope-dev] [Checkins] SVN: zc.buildout/ Moved to github
Tres Seaver
tseaver at palladion.com
Sun Aug 19 15:49:23 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 08/18/2012 09:24 PM, Lennart Regebro wrote:
> On Sat, Aug 18, 2012 at 11:03 PM, Tres Seaver <tseaver at palladion.com>
> wrote:
>> Because the ability to check into svn.zope.org is based on a "chain
>> of custody" managed by the ZF (web account, verified e-mail address,
>> and SSH key). J. Random Hacker's account on Github has no such
>> chain.
>
> Sure, but Random J Hacker shouldn't have write permission to the
> repository, so I don't understand why that makes a difference.
The point is that the identity of the committer on Github is not tied to
the ZF's machinery for contributions, which means that it cannot be used
to preserve the "chain of custody" under the contributor agreement.
Tres.
- --
===================================================================
Tres Seaver +1 540-429-0999 tseaver at palladion.com
Palladion Software "Excellence by Design" http://palladion.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAlAxCv4ACgkQ+gerLs4ltQ7hDgCfaQN7zti4rJ6vxCOGMPK/GLoc
r8QAoJry8boBEq1l3OIrO61KrAQQwUT1
=F7Vv
-----END PGP SIGNATURE-----
More information about the Zope-Dev
mailing list