-
Notifications
You must be signed in to change notification settings - Fork 63
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[ig/security] revert coord with AB to Process CG for process changes #613
base: gh-pages
Are you sure you want to change the base?
Conversation
suggest reverting to prior proposed SING charter specifically on the matter of coordinating with the Process CG instead of the AB
@tantek thank you for the revert, it was on my to-do list. I was also thinking about removing references to CG/AB and simply saying that you could suggest changes to the Process. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, agree with @tantek, the Process CG is the proper place to provide input on process changes.
IMHO, explicitly calling out where process change requests will go is better than leaving it vague... anyone can improve process changes at any time. It's worth calling out that SING plays a particularly elevated role here when it comes to process changes wrt. desired security outcomes. |
We need to also find consensus on this with @frivoal since he asked for the change that's being reverted. I'm happy either way. |
@jyasskin is a very good point, as I was writing to @tantek, given that:
Given this, I would simply leave the note that improvements can be recommended, without specifying to whom, as suggested by @msporny. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
as per #613 (comment)
@simoneonofri that's the opposite of what @msporny suggested:
Emphasis added. |
Yes, thanks for pointing that out @tantek. While that's true, I don't feel so strongly about mentioning to which group the request should be targeted. I do think it's better to state it explicitly (i.e., which group should be liaised with?), but don't feel that not stating it is going to lead to anything bad happening (more flexible). I feel like I'm wading into a discussion that's been happening for a bit, don't want to be disruptive, and am probably missing some detail? I do think it's important that SING have, as one of its primary tasks that's written down, improving the process around security reviews at W3C... and stating that explicitly is a good thing, which @simoneonofri's suggested changes do. Not mentioning any specific group might also address @tantek and @frivoal's concerns (don't mistakenly list the wrong group, or one that might change over time) and make the charter more resilient to changes wrt. where W3C Process are discussed and made? All that said, just take my input as non-blocking commentary. I defer to those more steeped in what the most accurate charter language here should be. |
I can go either way, but as I proposed in the original change, I think the AB is better to list here. The Process is largely delegated to the Process CG by the AB, so on a day to day basis, talking to the Process CG might be more logical. However:
Or maybe we should just list both? In any case, whatever the choice, I'm not blocking. |
per request from @simoneonofri, and explicit comments from @manusporny @frivoal that they can live with this option (not blocking) also
I would have preferred to see coordination with Process CG mentioned, but am happy with not mentioning any specific group. |
Thank you. Yes, I understand your point, so I made the initial change. However, I was further reasoned by the various comments that came in, which, in the form of other details, were rather discussed in the review. Reflecting on charter resilience to change, I'm more inclined to make the task generic.
Thank you |
As I said in #613 (comment), I don't have strong opinions on this point. |
suggest reverting to prior proposed SING charter specifically on the matter of coordinating with the Process CG instead of the AB. Process CG is where any proposed W3C Process changes should go first. The AB largely oversees the work of the Process CG, rather than separately receiving input on the Process.
cc: @chrisn @msporny @jyasskin