Conversation

Notices

1. Embed this notice
   Natanael Copa (ncopa@fosstodon.org)'s status on Sunday, 31-Aug-2025 16:08:03 JST Natanael Copa

   @mirabilos

   Would you prefer we’d allow completely anonymous people make changes to the software millions run?

   • Embed this notice
     Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Sunday, 31-Aug-2025 16:08:03 JST Haelwenn /элвэн/ :triskell:

     in reply to
     @ncopa @mirabilos Isn't that already covered by having been active in FOSS circles for 2 years? Which changes it from purely anonymous to well established pseudonyms.
     Plus it would make more sense to check say previous maintainer roles for bad faith kind of concerns, personal details seems quite irrelevant to this kind of stuff.
   • Embed this notice
     Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Wednesday, 03-Sep-2025 18:42:03 JST Haelwenn /элвэн/ :triskell:

     in reply to

     • fossdd @ FOSDEM
     @fossdd @ncopa Well a Jia Tan probably could produce some more or less bogus personal details, after all Alpine can't really verify the authenticity of those.
     
     Meanwhile having been involved in other projects is quite harder to produce, and can allow to check on past behavior.
   • Embed this notice
     fossdd @ FOSDEM (fossdd@chaos.social)'s status on Wednesday, 03-Sep-2025 18:42:05 JST fossdd @ FOSDEM

     in reply to

     • Haelwenn /элвэн/ :triskell:

     @lanodan @ncopa @mirabilos@toot.mirbsd.org the problem is we have to prevent the 2nd xz attack and yet respect the privacy of the contributors. compmetely anonymoys contributors can stiml do everything, just merging requires further information. somewhere the line has to be drawn, i we're fine. especially since you can do everything also anonymously in contrary to debian/arch/...