The Open Source Software Security Mobilization Plan

Santiago Torres Arias santiago at
Thu May 26 20:31:12 UTC 2022

On Wed, May 25, 2022 at 02:00:18PM +0100, Chris Lamb wrote:
> Hey Larry,
> > [..]

I am listed as a reviewer I believe. I pushed for a bunch of
technologies (reprobuilds included, + in-toto and TUF) but I don't think
I had much of a say what goes in, but rather what was technically wrong.

I think broadly speaking everybody involved believes in reprobuilds, and
we are aware that it's a crucial part of the puzzle. So I wouldn't sweat
it too much.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <>

More information about the rb-general mailing list