Governance Meeting - Dec 15, 2021

2021-12-15T21:00:00Z

Participants

Mark Waite (@MarkEWaite), Gavin Mogan (@halkeye ), Ewelina Wilkosz (@ewelinawilkosz ), Oleg Nenashev (@oleg-nenashev ), Daniel Beck (@danielbeck )

Notes

• News
  • Jenkins and Apache Log4j 2 zero day (blog post and Jira epic)
    • Audit log is likely used by enterprises, the only one that worries Oleg
    • 6000 views of the CVE related posts on community.jenkins.io
      • Encourage people to register for advisory email messages
    • CVE Blog post as of Governance meeting has 71k views this week (8-14)
      • Comparison :
        • / has 77k
        • /downloads has 30k
        • /doc/book/pipeline/syntax/ has 26.5k
        • /security/advisories/ has 25k
  • Jenkins 2.325 released with new plugin manager UI
  • Jenkins 2.326 will update from Groovy 2.4.12 to Groovy 2.4.21 (PR)
  • Jenkins 2.319.2 will be released on Jan 12, 2021 (seeking a release lead)
  • FOSDEM 2022 call for papers open for CI/CD DevRoom
• Administrative access - Oleg Nenashev
  • Herve’ asked for infra access to jenkins-infra org and security tracker
    • Needs a signed CLA, following the existing process
    • Oleg will enable EasyCLA for the repository
  • Contributor license agreement expectations
  • Oleg is still listed as a manager for the CloudBees CLA at Linux Foundation
    • Mark check with Linux Foundation on how to update CLA manager
  • Any role that requires special permissions should have a signed CLA
    • Jenkins.io copy editor has special permissions
• CD Events
  • Accepted to the Continuous Delivery Foundation
  • Cloud Events plugin may need updates to support the specification
• Google Summer of Code
  • Alyssa Tong and Jean-Marc Meessen want to lead the effort
    • Oleg unavailable for Outreach and Advocacy Meeting
    • Need to agree on time when we restore GSoC office hours
      • Need multiple people helping with office hours
  • Jenkins plans to operate independent of CDF
    • Current consensus to operate as part of CDF
    • Discussion and planning in the mailing list
    • OK to use the community forum for discussions and planning
  • Gavin noted a contributor in the Gitter channel that wants to mentor
• Propose to cancel governance meeting Dec 29, 2021
  • +1 from all 4 attendees
  • Mark remove from the calendar
• Application requests on GitHub to the jenkinsci organization
  • Many requests for Codacy, GitHub Apps
  • Damien Duportal reviewing infra requests
  • Only the organization admins can handle those requests
    • Mark check if he’s an organization administrator
      • Mark is a member but not an org admin
      • Mark is a collaborator on 1 repository in jenkinsci, 1 in jenkins-infra
      • Mark is owner of jenkins-docs GitHub organization
    • Handle the requests
• Highlights from the mailing lists and community forum
  • Meeting minutes and video on community.jenkins.io
    • Also used for infrastructure and Docs office hours
  • Partial notifications to gitter channels
    • Some rules configured to notify channels
    • Questions appear in gitter jenkins/jenkins
    • Advocacy questions appear in advocacy and outreach