The Open Source Software Security Mobilization Plan

Santiago Torres Arias santiago at nyu.edu
Thu May 26 20:31:12 UTC 2022


On Wed, May 25, 2022 at 02:00:18PM +0100, Chris Lamb wrote:
> Hey Larry,
> 
> > [..]

I am listed as a reviewer I believe. I pushed for a bunch of
technologies (reprobuilds included, + in-toto and TUF) but I don't think
I had much of a say what goes in, but rather what was technically wrong.

I think broadly speaking everybody involved believes in reprobuilds, and
we are aware that it's a crucial part of the puzzle. So I wouldn't sweat
it too much.

Cheers!
-Santiago
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.reproducible-builds.org/pipermail/rb-general/attachments/20220526/441c9826/attachment.sig>


More information about the rb-general mailing list