►
From YouTube: Working Group: 2020-07-30
Description
* Project Descriptor Schema: https://github.com/buildpacks/rfcs/pull/103
* CA Certs
* Shell-free profile.d: https://github.com/buildpacks/rfcs/pull/104
A
Are
we
expecting
steven
or
ben.
B
A
I'll
do
that,
do
you
have
any
new
faces,
anyone
who
hasn't
been
to
the
meeting
before
or
would
like
to
introduce
themselves
that
doesn't
look
very
good.
A
Josh,
do
you
want
to
talk
about
your
schema
proposal
yeah?
I
can
that'd
be
great.
D
D
So
this
is
103
is
that
right.
E
E
A
bit
of
background
I
put
this
together
because
we
kind
of
did
on
the
heroku
side
we're
kind
of
extending
the
project
descriptor
to
include
more
platform
specific
functionality,
mostly
by
kind
of
like
landing
it
in
keys
that
we're
not
using
when
we
developed
that
we
ended
up
making
a
json
schema
for
the
like
merged
version
and
thought
it
might
be
useful
for
just
the
general
project.
Descriptor.
E
Some
of
the
some
of
the
nice
bits
that
come
out
of
this,
as
you
get
slightly,
I
guess
right
now,
it's
kind
of
like
we
have
a
bunch
of
rules
about
what
a
project
descriptor
is
and
they're
all
hard-coded,
meaning,
like
you
know,
we
we
have
to
like
explicitly
write
tests
and
explicitly
like
make
sure
that,
like
the
include
and
exclude,
are
both
specified
or
you
know,
there's
probably
a
host
of
other
rules
that
I
know
aren't
validated
like,
for
instance,
build.m
has
a
key
in
value,
but
you
don't
have
to
provide
either
and
we'll
accept
that
so
there's
a
lot
of
like
just
you
think
about
how
a
tamil
could
evolve
over
time
and
how
it's
really
up
to
us
like
manually,
validate
those.
E
So
this
kind
of
solves
that
problem,
because
you
kind
of
have
like
a
generic
way
to
describe
how
it
should
look
and
you
get
errors
if
it
doesn't
match.
So
you
get
things
like
formats.
E
This
is
kind
of
like
what
the
schema
might
look
like
you.
Basically,
you
know
we
describe
what
it
needs.
You
know
what's
mandatory,
what's
not,
we
can
require
our
name
and
value
for
like
build
in
that
kind
of
thing.
E
It
ends
up
yielding
more
of
a
you,
get
slightly
better
errors
like
you
know
previously,
when
you
get
an
error
like
this,
it
says
you
know
very
goaling,
specific
error
message
and
it's
not
super
clear
what
it's
about
you.
You
get
a
slightly
better
error
message.
This
is,
you
know
this
is
kind
of
like
a
proximization
of
what
it
might
look
like.
B
B
B
E
B
E
Looked
at
those,
but
that
kind
of
occurred
to
me
that
there
are
libraries
where
you
can
generate
ghost
structs
or
I
wasn't
looking
at
typescript
types
where
you
could
generate
them
from
the
schema,
because
the
schema
is
like
just
well-formed
enough.
You
could
do
that.
So
I
guess
is
it
generated
or
is
it
just
part
of
the.
C
B
Have
tools
in
there
to
generate
the
strikes
from
the
schema.
D
Yeah
I'd
be
more
hesitant
to
the
go
bindings
option
because
it
seems
very
opinionated
to
go
where
you
know
in
some.
In
this
case
it
seems
like
they're
using
javascript
right
and
why
pick
go
over
javascript
or
any
other
language
for
that
matter,
that's
where
it
seems
a
little
iffy,
and
especially
if
we
could
have
something
like
the
schema
itself
being
declared
and
having
a
different
tool
that
generates
those
structs
for
any
given
language.
D
B
I
think
you
can
still
import
them
like
there's
a
go
mod,
I
believe
in
the
oci
spec.
Let
me
check
whether
that's
true
or
not.
B
D
D
A
E
And
I
know
there
are
tools
that
exist
that
can
generate
documentation.
So
if
we
want
to
like
add,
like
you
know,.
E
D
E
B
D
A
Yeah,
I
mean
definitely
the
the
value
for
us
is
from
project
tamil,
but
I
don't
know
I
could
definitely
see
wanting
the
other
stuff
specked
out,
especially
as
like
more
people
start
calling
lifecycle
directly
or
it'd
be
nice
to
have
one
for
builder
tomel
too.
A
B
A
A
D
A
So
because
project
tamil
is
already
an
extension,
I
think
we
can
start
with
project
tamil
really
easily
and
just
add
it
to
that
same
tag
on
the
the
spec
part
of
it.
So
it'd
be
a
good
place,
like
that's
a
good
way
to
just
dip
a
toe
under
the
water,
and
if
it
looks
if
it
works,
we
can
expand
it
to
the
other
tamil
files.
B
It's
worth
noting
that
this
fights
against
the
idea
that
the
key
name
in
project
tommle
can
be
derived
from
the
file
name.
I
don't
think
he
can
make
a
schema
that
describes
that,
but
I
would
feel
a
little
iffy
about
that
suggestion
anyway.
So
I'm
okay
with
that,
but
I
thought
I'd
call
it
out
because
it's
in
a
different
rfc.
A
B
A
I
think
we
can
have
that
discussion
as
part
of
the
that
rfc
and
not
this
rfc,
because
I
think.
A
A
Yeah,
actually,
the
timing
of
that
was
funny
yeah.
I
I
guess,
since
there's
nothing
else
on
the
agenda,
I
made
some
updates
to
the
app
mixins
based
on
our
discussion
yesterday
and
I'm
feeling
like
it's
pretty
pretty
darn
close.
I
want
some
of
like
the
key
names
and
the
schema
I'm
not
super
happy
with,
but
the
actual
structure
of
it
is
what
I
want
so
take
a
look
when
you
get
a
chance.
D
So
I
am
curious
in
relation
to
this
it
yesterday
you
mentioned
that
you
were
already
kind
of
like
prototyping,
some
of
this
to
make
it
work
and
see
how
well
it
all
ties
together.
D
I'm
curious
how
that
ties
into
some
of
the
other
efforts
that
I
know
I'll
be
probably
focusing
on
next
week,
which
is
the
ca
cert
stuff,
and
I
know
we
kind
of
created
a
little
bit
of
a
a
plan,
a
game
plan
to
tackle
that
was
to
enable
the
volumes
the
rewrite
volumes,
which
is
easily
attainable.
That
rfc
just
went
through
and
then
start
actually
implementing
some
of
this
ahead
of
time.
D
So
yeah,
I'm
curious,
like
what
that
entails.
Is
that
some.
A
I
don't
know
how
you're
gonna
do
it,
but
I
think,
like
our
like,
if
we
end
up
with
a
ca,
cert
stack
build
pack.
It
would
probably
leverage
my
like
my
hunches
that
would
leverage
the
same
volume
mechanism
to
to
bring
in
the
certs
right.
It's
just
sort
of
a
different
mechanism.
D
It
isn't
so.
I
don't
know
if
you
saw
a
reply
to
your
comment
where
the
read
write:
volume
works
as
a
as
a
workaround
right
as
a
hack.
I
think
you
declared
it
a
hack
so
that
I
don't
think
that's
the
problem
right.
It's
kind
of
the
next
step
the
evolution
of
that
is.
D
If
we
wanted
to
actually
provide
a
stack,
build
pack
that
when
you
placed
a
search
file
somewhere
right
that,
then
it
detects
that
and
executes
the
update,
ca
search
automatically
so
that
you
don't
have
to
provide
the
entire
contents.
You
could
just
provide
additional
certs
that
get
added
to
the
store.
D
A
Something
you've
already
done
so,
first
of
all,
it's
very
early
like
we,
you
know
we
were
just
proving
out
the
the
caniko
stuff
right,
there's
still
I'll,
probably
jesse's,
probably
gonna
pick
it
up
where
I
left
off-
and
I
know
he's
out
next
week.
So
the
timeline
like
I
do
not
want
to
attach
the
timeline
for
the
for
what
you're
doing
with
ca
certs
to
stack
packs
right
now.
I
think
that
would
be
just
a
disservice
to
the
community
right.
A
So
as
long
as
you're,
okay
with
us
reworking
that
later
on
potentially
like-
and
maybe
we
don't-
maybe
we
just
say
yeah
whatever
the
thing
pack's
doing
it's
fine
other
platforms
can
use
stack
packs
for
this
for
this
capability.
So
like.
Let's,
like
I
guess,
what
I'm
saying
is:
let's
just
work
on
these
two
things
independently,
as
though
they
aren't
connected.
Even
though
we
have
a
feeling
that
we
will
use
stack,
packs
down
the
road
as
a
general
mechanism
for
certs.
D
It
does
with
the
like
the
idea
of
saying,
like
hey,
we
might
stump
on
each
other's
toes
and
we're
both
okay
with
that
and
we'll
figure
out
how
to
essentially
merge
that
piece
of
work.
The
part
where
maybe
I'm
a
little
confused
and
might
be
what
emily
was
trying
to
get
at
was
like
my
step
from
here,
would
be
to
use
stack,
build
packs.
There
is
no
pack,
only
implementation
that
I
can
see
outside
of
the
read
write
volume
mount.
D
D
B
A
I
think,
like,
let's
see
that's
too
bad,
that
jesse's
out
next
week,
because
I
didn't
want
to
just
go:
do
it
without
him,
but
we
could
like.
The
branch
is
up
there
like
you,
could
pull
it
down
and
you
know
pretty
soon
start
to
play
with
it
and
try
to
build
something
on
it.
Like
a
actual
cs3
stack
build
pack,
but
I
worry
that
that's
gonna
just
delay
some
other
hack
that
we
could
get
out
for
people
to
use.
D
A
A
Like
could
we
converge
at
in
a
week
or
something
like
that.
D
A
D
That's
what
we
currently
have
the
use
of
volume
mounts
is
what
we
will
have
when
we
have
rewrite
volume
mounts
that
could
be
placed
anywhere
and,
like
I
said
the
only
like,
I
can't
find
a
solution
between
the
volume
mounts
and
the
stack
build
packs
right
without
it
being
tied
to
a
very
specific
operating
system
in,
like
a
really
really
hacky
way.
B
B
It's
in
the
the
docker
vm
has
a
search
store
and
I
check
the
documentation.
It
claims
that
it
populates
it
using
your
system
search
store.
So
if
you
install
a
new
cert
on
your
workstation
and
then
you
restart
docker
your
new
search
in
the
in
the
docker
vm
and
then,
if
you
mount,
if
you
said
dash
volume,
etsy,
search
or
etsy
ssl,
search
colon
at
cssl
certs,
then
because
that's
not
in
one
of
docker's
allowed
share
paths,
it
will
actually
mount
the
directory
from
the
vm
not
from
your
host
system.
C
D
Okay,
that's
that's
basically
what
I
was
really
looking
for
right.
The
only
way
that
we
can
solve
portable
runtime
would
be.
I
mean
if
we
even
wanted
that
I
think
really
is
a
stack,
build
packs.
B
I
think
the
big
gap
is
ci.
You
would
need
to
install
your
shirts
in
ci
as
well.
E
As
we
say,
if
you're
already
using
pack,
then
you
can
just
create
a
volume
and
do
that.
D
B
C
I
I
added
something
to
the
end
of
the
list
when
I
joined
just,
I
updated
the
rfc
around
profile
d
to
use
a
totally
separate
directory
and
kind
of
better
defined
the
formats
for
the
output
and
added
a
prior
art
section
on
joe's
request.
Just
main
thing
I
wanted
to
ask,
is
you
know
joey
you
brought
up
last
time,
you
know.
Is
this
a
pattern
somewhere?
I
don't
know
when
I
thought
back.
C
I
didn't
remember
if
we
actually
addressed
that
or
if
we
changed
subjects
somehow
do
you
do
you
still
feel
like
it
needs
more
investigation
into
the
sorry.
C
Awesome,
the
format
is
just
the
list
and
there
are,
there
are
some
things
like
windows
use
the
strategy
for
adding
up
to
the
environment.
So
I
just.
C
C
Given
terence
is
out
this
week,
I'm
I'm
happy
to
wait
a
little.
You
know
until
he
has
a
chance
to
look
at
them.
At
least
if
you
know
that'd
be
a
I'm
kind
of
looking
at
joe.
A
C
Happy
to
want
to
make
sure
he
has
a
chance
to
provide
feedback.
I
think
they're
small,
hopefully
and
not
not
super
controversial
things,
but
I
definitely
don't
want
to
move
too
quickly.