Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

2023-03-23 meeting minutes #64

Merged
merged 4 commits into from
Mar 25, 2023
Merged

2023-03-23 meeting minutes #64

Changes from 3 commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
52d2ed3
docs: added meeting 2023-03-23 minutes
inigomarquinez Mar 24, 2023
669bee3
fix: meetings url
inigomarquinez Mar 24, 2023
416d655
docs: updated meeting notes
UlisesGascon Mar 25, 2023
cffb859
fix: typo
UlisesGascon Mar 25, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
97 changes: 97 additions & 0 deletions docs/meetings/2023-03-23.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,97 @@
---
sidebar_position: 7
id: meetings-2023-03-23
title: "2023-03-23"
slug: /meetings/2023-03-23
---

# One Beyond Open Source Maintainers Meeting 2023-03-23


<iframe width="100%" height="444" src="https://www.youtube.com/embed/ObeJrEiqgS4" title="YouTube video player" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share" allowfullscreen></iframe>

## Links
* **recording:** [Link](https://www.youtube.com/watch?v=ObeJrEiqgS4)
* **Github issue:** [#57](https://github.com/onebeyond/admin/issues/57)
* **Minutes Google Doc:** [Link](https://docs.google.com/document/d/1WJqdFKVq28yLaWdc0h_hvE6XE4f_sqx7SLD6p4rhcAE/edit)


## Present
__Use github alias__
* Admins team: @onebeyond/admins
* Maintainers team: @onebeyond/maintainers
* Ulises Gascon: @ulisesgascon
* Íñigo Marquínez Prado: @inigomarquinez
* Carlos Serrano: @carpase
* Carlos Jiménez: @Betisman
* Matteo Di Paolo: @MatteoDiPaolo

## Announcements

- Scorecard Updated to new version (bump to beta3 - issue mentions, tags and fix link)
- Best project in OpenSSF Best Practices: Systemic-Knex. [See](https://bestpractices.coreinfrastructure.org/en/projects/7143)

## Review Scorecard results

- [See #63](https://github.com/onebeyond/maintainers/issues/63)
- [See #62](https://github.com/onebeyond/maintainers/issues/62)

## Agenda

### Repo template as baseline
- [See #1](https://github.com/onebeyond/admin/issues/1)
- Almost everything is included using community health files, and we don’t have anything more to add right now to the template. So we’ll close the issue and we’ll open new ones if we want to include more things to the template.

### Metafiles Definiton
- [See#15](https://github.com/onebeyond/admin/issues/15)
- Already included CODE_OF_CONDUCT, Issue and pull request templates and SECURITY
- Still missing CONTRIBUTING, Discussion category forms (we don’t want this one right now), and SUPPORT. We’ll add them taking into account examples of well-know organizations.

### Prototype Pollution in JSON5 via Parse Method
- [See #21](https://github.com/onebeyond/admin/issues/21)
- Still in progress. We’ll remove it from the agenda and inform once it’s solved

### Missing NPM Package publication permissions
- [See #28](https://github.com/onebeyond/admin/issues/28)
- Still working on it

### Repos with NPM version mismatch
- [See #29](https://github.com/onebeyond/admin/issues/29)
- Still working on it

### Checklist for existing and new repositories
- [See #42](https://github.com/onebeyond/admin/issues/42)
- The draft tool we’re using is [here](https://github.com/inigomarquinez/github-snitch).
- The code has been improved to use GitHub’s GraphQL.
- The output has been improved to render in JSON and CSV (next will be markdown).
- It has already been used to detect some improvements in different repos of the OneBeyond org, and they have been fixed (mainly main branch protection and license).
- The idea is to generate a GitHub action that can be run periodically to analyze the generated repost (similar to the scorecard).

### Verifying or approving a domain for our organization
- [See #51](https://github.com/onebeyond/admin/issues/51)
- Does this affect to our github pages? Check the documentation
- Ask IT to do the domain verification

### BUG: Restore nuget CI publicacion for Monaco
- [See #56](https://github.com/onebeyond/admin/issues/56)
- Temporal patch (using @inigomarquinez personal token) that we should remove once we have a microsoft account and nuget account with that email

### FEATURE: Release drafter
- [See #58](https://github.com/onebeyond/admin/issues/58)
- We have different alternatives to auto-create new releases with changelog. @carpasse and @inigomarquinez will do some demos to decide

### Scheduled reminders
- [See #59](https://github.com/onebeyond/admin/issues/59)
- We find it interesting so it should be something to investigate because it can be interesting to add it progressively

### Two-factor authentication
- [See #60](https://github.com/onebeyond/admin/issues/60)
- 99% of the users use 2FA. We have decided to do it mandatory. It will remove from the organization those users without 2FA (only 1 right now).

## Q&A, Other

- N/A

## Upcoming Meetings

- As it’s Easter in two weeks time, next meeting will be in one month (20th April 2023)