►
From YouTube: CNCF TOC Meeting 2023 01 17
Description
CNCF TOC Meeting 2023-01-17
Discussion around https://github.com/cncf/toc/issues/981- Health of the Notary V2 project
Discussion around https://github.com/cncf/toc/pull/991 - Flatcar proposal
B
C
D
Hi
everybody,
so
we
have
a
full
house
today.
We.
D
Thank
you
Amy,
so
Happy
New
Year
to
everyone
I,
don't
think
I
wished
all
of
you
yet
so,
and
it's
only
the
17th
of
January,
so
I'm
wishing
you
hopefully
I,
won't
have
to
repeat
this
again.
So
today
we
have
two
items
on
the
agenda.
Can
we
go
to
the
next
slide?
Please
yeah.
D
So
the
first
one
is,
you
know:
we've
had
a
couple
of
turns
at
this.
One
won
a
private
Toc
discussion
last
year
and
more
recently
in
the
cncf
doc
repository
so
hi
Phil,
so
I
would
like
us
to.
You
know
talk
a
little
bit
about
it.
I
want
to
see
what
what
folks
on
the
call
think
about
this,
including
the
TOC
folks
as
well.
D
Let's
start
with
free
flowing.
If
it
doesn't
work,
then
we'll
switch
around
to
you
know,
raising
your
hands.
So,
let's
who
wants
to
get
started
Justin?
Would
you
like?
Do
we
have
two
Justin
so
Mr
capos?
Who
do
you
like
to
get
started
since
you
raised
both
the
email
and
the
issue
in
the
cncft
Repository.
E
Sure,
yes,
I
I
think
this
is
a
pretty
simple
issue
and
I
am
glad
to
see
that
that
some
folks
from
the
notary,
V2
project
did
show
up,
because
there
hadn't
been
any
responses
to
the
thread
and
there
had
been.
You
know
prodding
on
their
SLI
on
their.
You
know
slack
Channel
and
stuff
like
this
to
interact
in
some
way,
but
but
basically
the
the
project
is
entirely
different.
E
There
has
none
of
the
same
people.
The
design
has,
you
know,
is
completely
different.
It's
fundamentally
flawed
in
a
bunch
of
different
obvious
ways
that
were
pointed
out.
E
The
way
this
was
done
was
completely
in
a
way
that
had
the
project
or
the
cncf
enforce
code
of
conduct
in
a
way
that
they
do
now
never
would
have
been
allowed
to
to
fly
and,
and
frankly,
it's
I
think
a
really
bad
look
and
a
bad
precedent
for
it
to
to
be
inside
the
inside
the
cntf,
especially
the
way
it
is
because
you
know
I
mean
I
could
start
a
crypto
minor
project
to
call
it
notary,
B3
and
I
would
have
more
provenance
claim
to
prominence
than
notary
B2
does,
with
with
what
they've
done.
D
Justin
I
want
to
divide
the
divide,
the
discussion
into
like
two
parts.
One
was
before
the
last
time
the
TLC
interjected
and
you
know,
requested
some
changes
and
after
are
you
talking
about
before
or
after
or
both.
E
I
I
would
say
both
really
what
happened
is
the
TOC
stepped
in
asked
for
some
changes
we
were
told
things
like
the
projects
could
have
a
new
name.
It
wasn't
going
to
try
to
ride
on
the
coattails
of
notary,
the
notary
name
and
cause
confusion.
E
We
were,
you
know,
told
a
lot
of
things
were
going
to
happen.
They
were
going
to
change
so
that
we
could
participate.
Others
could
participate
freely
in
the
project.
They
were
going
to
make
changes
to
code
of
conduct
and
all
of
this
and
basically
instead
the
project
really
went
dormant
for
a
very
long
period
of
time,
with
no
visible
progress
of
anything
thing
and
I.
E
Think
most
of
us
thought
that
the
project
was
basically
dead
and
then
it's
kind
of
had
you
know,
they've
I,
don't
know
what
has
happened
to
cause
this
to
occur,
but
they
brought
in
new
people
who
have
no
background
with
the
project
and
don't
really
know
what
has
happened
in
the
past
with
it
to
try
to
move
it
to
a
state
where
they
can
declare
some
form
of
Victory
or
something
with
it.
E
So
I
I
think
that
all
of
the
complaints
and
criticisms
are
equally
valid,
both
pre
and
post,
and
none
of
them
were
really
addressed
in
a
way
that
I
think
any
of
the
original
signatories
of
the
letter
felt
was
satisfactory
and
also
I.
I
would
say
that
I
don't
believe
that
by
us
sending
the
letter
privately
to
the
TOC,
we
believed
we
were
trying
to
do
something
private.
E
We
were
trying
to
give
people
a
heads
up,
as
I
did
with
the
message
that
I
sent
to
the
TOC
ahead
of
making
this
public,
which
was
to
just
say,
hey
here's
a
heads
up
of
what
we
want
to
say
publicly
and
we
were
encouraged
to
keep
that
message
private.
While
the
TOC
discussed
it
and
did
things
with
it
and
then
all
we
heard
months
later
was
a
response
that
was,
you
know
effectively
almost
entirely
the
opposite
of
what
we
had
all
wanted
and
thought
was
fair
and
Equitable
and
reasonable
yeah.
D
Got
it
Justin?
Thank
you.
I'll
I'll
take
I'm,
not
I,
let
others
speak.
People
speak
as
well,
especially
folks
who
have
been
on
the
either
on
the
notation
new
project
or
on
the
notary.
V2
or
you
know,
yeah,
our
signatories
does.
Anybody
else
wants
to
want
to
go
next.
F
Hey
DMS,
hello,
lucky
Evenson
from
Microsoft
I
am
associated
with
the
notary
V2
project,
namely
my
contributions
have
been
I,
worked
on
the
governance,
documentation,
the
governance
docs
that
were
suggested
through
this
change
that
Justin
capos
just
said
so
just
I
wanted
to
probably
respond
to
a
few
things
that
I
saw
on
the
thread
that
were
dangling
and
and
of
you
know,
action
items
for
this
project.
F
Specifically
one
was
specifically
about
governance
and
we've
spent
some
time
thinking
about
how
we
can
improve
the
the
government
stocks,
and
we
presented
preliminary
proposal
to
some
changes
to
the
governance,
mainly
if
I
was
to
summarize
what
they
are
as
making
them
more
discoverable,
making
the
maintainers
more
consistent
so
that
it
was
easy
to
find
who
was
the
maintainers
of
what
projects
underneath
the
notary
project
organization
in
GitHub.
F
So
that's
something
you
know
the
notary
maintainers
have
been
interested
in,
seeing
if
we
can
do
that,
I'm
happy
to
share
that
document,
because
I
know
that
there
was
enough
Dems
that
governance
changes
would
have
been
made
by
August,
I,
think
that
was
August
of
last
year,
and
there
were
some
governance
changes
in
there.
F
But
I
think
we've
taken
a
look
and
we
can
make
some
Better
Effort
around
what
Justin
capos
has
called
out
around
making
it
more
clear
discoverable
who
who
owns
what
I
was
part
of
a
lot
of
the
changes
when
our
notary
was
moved.
F
The
notary,
V1
project
was
moved
out
from
under
the
tough
organization,
and
I
was
acting
on
what
I
thought
was
agreed
upon,
which
was
that
we'd
move
it
out
to
its
own
organization
and
that
we'd
rename
notary,
because
notary
V2
was
there
was
a
project
called
notary
V2
under
there,
and
it
was
changed
to
notation
as
a
way
to
stop
confusion,
which
is
one
area
and
kind
of
the
idea
behind
pulling
it
out
in
it
into
its
own.
F
Org
was
that
we
could
create
an
ecosystem
of
projects
under
there
that
people
could
implement
the
specifications
and
I
believe
that
we
created
a
couple
of
different
repos
with
different
maintainers
for
that
specific
purpose.
F
As
for
you
know,
what's
in
that
that
issue,
981
I,
think
you
know
as
being
part
of
that
Community
I'm,
not
a
maintainer
of
notary
V2,
specifically
but
I've,
participated
in
in
meetings.
I.
Think
that
there's
been
a
lot
of
changes
to
the
way
that
that
Community
has
been
run
and
I
would
invite
those
members
to
come
back
and
take
a
look
because
I
think
we've.
F
A
lot
of
those
allegations
in
the
in
the
issue
are
no
longer
valid
and
there
are
other
members
of
that
community
that
are
participating
in
there.
So
I'm
really
trying
to
see
what
are
the.
What
are
the
areas
we
can
improve
and
make
that
Community
better
and
see
what
we
can
put
into
shape
and
what
we've
got
now
is
some
governance,
changes
to
transparency
and
discoverability,
and
then
I
also
think
what
was
called
out
in
there
making
sure
that
our
agendas
are
always
clearly
documented.
F
That
meeting
minutes
are
always
clearly
documented
and
we
could
probably
work
with
the
cncf
to
make
sure
that
videos
are
posted,
I,
think
the
videos
are
there.
We
could
go
and
post
the
recordings
and
do
that,
but
I
suggested
that
we
go
talk
to
Amy,
because
I
believe
there's
a
tool
to
do
that
in
an
automated
fashion.
F
So
I
think
you
know
all
the
things
we
have
a
plan
for
for
the
dangling
pieces
that
need
an
action
item,
I'd
be
happy
to
discuss
them,
but
yeah
interested
to
work
to
make
it
a
better
community
and
and
help
address
any
issues
that
have
been
raised.
That's
where
I'll
stop
at
this
point
take
stems.
Thank.
G
You
yeah
I
just
wanted
to
write
that
I
mean
just
don't
mention
it
going
quite
I
think
you
know
a
bunch
of
the
work
that
was
being
done
for
a
while
were
ended
up
Landing
in
places
like
oci,
where
things
like
reference
types
that
or
kind
of
General
pieces
of
work
that
were
needed
as
generic
infrastructure
in
the
ecosystem
around
with
signing
and
other
use
cases,
and-
and
so
you
know,
there's
a
bunch
of
work
that
ended
up
Landing
there,
rather
than
naturally
I.
G
Think
that
also
just
you
know
to
be
clear
that
you
know,
there's,
there's
lots
of
potential
components
needed
and
that
you
know
notation
is
not
a
kind
of
feel
and
all
project
that
replaces
notary
V1
in
any
sort
of
sense,
and
you
know
I
think
there's
ongoing
ongoing
work.
Looking
at
you
know,
you
know,
you
know,
we've
been
doing
internal
draft
work,
which
I
shared
with
Justin
recently
on
like
ways
we
can
incorporate
tough
into
this
ecosystem.
G
There's
a
bunch
of
I
think
about
things
like
in
Toto
and
I.
Think
that
you
know
these
things
are
not
you
know.
These
projects
are
designed
and
Nursery
project
is
designed
to
be
my
general
components
and
not
like
you
know,
complete
kind
of
Replacements
or
or
other
things
there's.
You
know,
there's
a
lot
of
work
to
do
to
actually
put
these
things
together
into
ways
that
people
can
use
them
effectively,
and
you
know
I
think
that
it's
still,
you
know
kind
of
designed
to
be
a
project.
H
Yeah
so
I've
been
doing
a
little
bit
of
Investigation
on
notary
and
notation,
and
what's
going
on
here,
trying
to
figure
out
what
happened
and
I've
learned
a
handful
of
things
that
I
don't
know
how
many
people
know
some
of
the
context.
So
you
know,
like
notary,
V1
is
still
in
use
right.
I
know,
there's
been
talk
of
it's
archived,
it's
not
in
use
anymore.
It's
gone
yet.
I
have
found
multiple
instances
where
it's
still
used
in
production
and
I.
H
Think
Docker
Hub
is
still
one
example
of
that,
so
it
hasn't
gone
away.
Code
has
been
merged
into
it
and
it
is
still
in
use.
So
I,
don't
think
that
needs
to
be
forgotten.
I
also
noticed
that
with
notary,
V2
and
notation
having
a
new
thing
that
comes
up
and
takes
life,
and
then
there
was
the
old
one.
We
already
have
examples
of
this
in
the
cncf
right
where
a
project
comes
in
with
one
way
of
doing
things
and
one
architecture
and
then,
as
things
change
get
re-architected,
the
ecosystem
does
things
differently.
H
So
to
say,
V1
versus
V2
requires
a
new
project.
Is
one
of
those
things.
We'd
really
have
to
dig
in
deep
on
I
think
because
we
already
have
these
examples
of
transformation,
while
in
the
cncf
I
also
noticed
that,
along
the
way,
notary
in
its
new
form,
is
a
collection
of
specs.
In
many
ways,
with
a
reference
implementation
in
notation
right
and
those
specs,
many
of
which
were
worked
out
with
the
oci-
the
open
container
initiative
to
make
some
of
this
stuff
work
together
and
if
I
even
understand
it
right.
H
This
involves
some
of
the
Sig
store
project
which
now
can
use
some
of
those
same
things
and
they
were
worked
out
together.
So
some
of
the
work
that
you
see
in
in
notary,
V2
and
notation,
it's
actually
been
worked
out
with
other
organizations
along
the
way
and
there
are
people
who
are
working
towards
using
this.
H
You
know
I've
gone
around
and
asked
I
said
all
right,
Sig
store,
it's
great,
I
use,
Sig
store
my
company,
you
take
store,
you
can
verify
our
container
images,
a
bunch
of
them
with
Sig
store,
but
I
went
around
and
asking
and
I
said
is:
are
there
places
where
it
doesn't
work?
And
the
answer
I've
been
told?
Is
yes
and
that's
one
of
those
areas
where
something
like
notary
and
notation
may
be
able
to
step
in
and
solve
for
because
it
doesn't
work
in
every
situation
that
you're
going
to
run
to?
H
And
you
know
that's
kind
of
normal.
We
we
have
that
kind
of
thing
in
the
Linux
foundation
in
the
cncf,
look
at
container
D
and
look
at
cryo.
We
we're
okay
with
that,
as
long
as
things
are
able
to
work
out
and
have
healthy
ecosystems,
and
things
like
that
and
so
I
wonder
where
there's
going
to
be
things
that
work
together
using
specs
and
those
same
specs
workplaces
where
certain
projects
are
going
to
carry
themselves
along
further
and
do
really
well
at
it
for
their
own
Niche
use
cases.
H
And
maybe
you
know
a
niche
can
be
a
one
percent.
Niche
can
be
a
graduated
project
because
you
can
have
enough
people
who
are
using
that
and
I'm
curious
to
see
what
projects
align
in
what
ways
and
what
users
and
their
reasons
for
that,
because
you
know,
as
we've
seen
there
isn't
always
one
size
fits
all
Argo
and
flux
graduated,
what
a
week
from
each
other
and
they
both
are
in
very
much
the
same
space.
H
D
Thanks
Matt
Justin
couples
just
hold
on
just
in
case.
Somebody
else
has
want
to
say
something:
I
saw
a
few
people
de
cloak
Vincent
Jason
Bridget
any
any
thoughts
here
before
I
hand
it
off
to
thank
you,
go
go
for
it.
Jason.
I
J
D
Richard
Json
I
ready
yeah
go
for
it
nope.
We
don't
hear
you
okay.
Now
we,
you
know
come
back
again,
Justin
capos,
please
go
for
it.
E
Okay,
thank
you
for
giving
me
so
much
time
here.
I
appreciate
it.
I
I
wanted
to
mention
a
couple
things
really
quickly
in
response
to
a
bunch
of
this,
so
the
governance
problems
that
likely
mentioned
were
only
kind
of
part
of
the
problem.
It
really
wasn't
so
much
the
governance.
It
was
really
the
people
involved
with
the
governance
and
the
way
that
that
had
worked,
and
so
I
understand
that
some
of
those
personalities
have
moved
on
to
you
know
other
things
like
this
and
and
so
on.
E
Fundamentally
it
it
still
comes
down
to
you
know
this
question
of
of
like
who
created
this.
There
was
an
existing
community
of
people
that
did
something
as
there
was
in
the
case
of
other
projects
like
Argo
and
they
came,
and
that
Community
went
and
created
a
V2,
and
that
was
very
successful.
That's
a
great
starting
point,
okay,
but
this
isn't
what
happened
in
this
case.
There's
zero
of
the
original
maintainers
zero
of
the
original
Code
Zero
of
the
original
design.
E
This
is
effectively
an
entirely
new
project.
That's
come
along
and
is
promoting
itself
heavily
and
in
fact,
like
a
third
of
the
web.
Page,
if
you
go
to
the
notary,
V2
webpage
is
basically
we
are
a
cncf
project.
They've
had
no
Security
review
the
you
know
it's
there.
There
are
fundamental
problems
in
the
security
design
and
other
things
that
have
been
repeatedly
pointed
out
in
the
public
meetings
that
you
can
see.
You
know
time
after
time
that
are
unaddressed
in
the
project
and
yeah
I.
Think
we've.
D
Made
the
same
argument
before
Justin
so
sure.
E
Let
me
say
one
last
thing
and
then
I'll:
okay,
just
that
I
would
very
much
like
considering
the
fact
that
there's
not
a
big
contingent
from
the
Sig
store
Community
here,
and
there
was
some
discussion
made
about
Integrations
with
this
project
and
everything
for
this
discussion
to
be
put
back
on
the
issue
tracker
in
a
form
where
they
can
participate,
and
they
can
comment
so
that
that
we
can
do
this
in
a
you
know,
in
a
way
that
doesn't
involve
only
the
people
in
the
room
during
a
very
specific
period.
D
Absolutely
if
you
want
to
go
back
and
create
another
issue
somewhere
else,
happy
to
redirect
people
to
that
the
other
issues
in
the
end
Justin.
We
all
have
to
work
together
to
make
each
other
better
and
we
we
have
to
keep
trying
to
make
things
better
for
us,
as
well
as
other
people.
D
So
I
would
like
to
move
to
towards
a
Cooperative
solution
to
like
what
we
are
trying
to
do
here.
So
I
want
to
take
the
things
that
you
pointed
out
in
a
positive
fashion
and
see
how,
like
we
tried
a
few
things
and
the
TOC
ended
up
asking
the
folks
to
do
something.
So
we
we're
going
to
try
doing
it
again
and
see
what
happens.
We
are
not
in
the
habit
of
you
know,
shutting
down
projects
just
because
you
know
people
don't
like
it
right
like
we.
There
is.
D
There
are
time
periods
in
the
Project's
growth
when
we
mandate
the
security
review
or
a
governance
review,
and
things
like
that,
so
we
will
catch
it
and
we,
like
Matt
sorry
now
pointed
out
that
we've
had
different
projects
that
have
had
multiple
versions
of
things
doing
totally
different
things.
D
Possibly
with
totally
different
people
too,
so
I'm
going
to
take
that
input
as
the
input
all
of
all
the
things
that
you've
said
as
part
of
what
the
TOC
will
consider,
but
you
know
we
will
end
up
taking
a
bunch
of
the
things
that
we
heard
here
and
read
on
the
issue
and
whatever
issue
you
want
to
make.
You
want
to
create
we'll
take
that
into
consideration
and
and
then
come
back,
come
back
to
the
team
to
say
hey.
This
is
what
we
think
you
all
should
be
doing.
D
So,
please,
you
know,
consider
it.
While
you
are
doing
your,
you
know
the
business
of
doing
the
open
source
for
the
work
that
you
are
doing
here.
So
that
is
the
overall
framework
we
are
going
to
operate
in
so
I'll
switch
back
to
Json.
Are
you
ready
now.
I
I
I
put
it
all
in
the
chat,
but
I
will
reiterate
the
thing.
I
think
the
the
thing
that
I
was
re.
Responding
to
earlier
was
Matt's
comment
about
notary
and
Sig
store
and
some
of
that
work.
I.
Don't
think
that
the
request,
as
as
Justin
laid
out
and
as
I
signed
on
to
was
that
notary
not
exist
or
that
it
like
shouldn't,
doesn't
doesn't
have
a
place
in
the
world
I.
I
Don't
think
anybody
says
that
just
that
as
an
incubating
project,
I
think
the
concern
was
that
it
would
not
meet
the
bar
of
an
incubating
project
if
it
walked
in
off
the
street
today.
The
other
thing
that
came
up
was
the
the
in
the
chat
that
the
security
review
is
a
requirement
for
graduation
I.
Think
notary
being
a
security
focused
project
with
Security
review
security
concerns
being
raised,
sort
of
raises
the
bar,
like
you
know,
notary,
should
have
a
higher
security
bar
than
I
think
the
average
incubating
project
off
the
street.
I
D
So
what
we
have
done
previously
in
projects
with
multiple
components
or
multiple
repositories
that
are
different
stages
of
you
know,
you
know
growth
or
maturity.
D
What
we've
ended
up
doing
is
we
told
the
project
to
clearly
delineate
which
ones
are
production
ready
and
which
ones
are
not
and
have
enough
language
in
the
repositories
or
in
the
sub
projects
or
in
the
different
repositories
that
it
controls
to
have
enough
guidance
in
there
so
that
people
are
not
LED
astray
by
you
know,
coming
through
one
portal
and
ending
up
somewhere
else
kind
of
thing,
so
we
have
done
this
before
and
the
guidance
the
TOC
has
given
is
hey.
Please
make
sure
that
you
document
these
things
properly
so
end.
D
Users
are
not
surprised
and
there
is
no
bait
and
switch
okay.
So
anybody
else
Matt
you
came
back.
Do
you
want
to
take
a
turn?
Yeah
yeah.
H
So
I
I
want
to
address
one
thing:
you
know
that
it
would
not
be
an
independent
incubating
project
yet
because
I
I,
when
that
was
said,
I
went
back
and
looked
at
the
incubating
stage
requirements,
and
what
do
we
normally
expect
and
also,
how
does
something
shift
right
and
flux
V1
to
V2?
Looking
at
something
like
that,
right,
V2
obviously
didn't
meet
the
requirements.
Well,
V1
was
around.
H
Initially
it
had
to
pick
up
certain
things
like
your
multiple
production
instances
and
things
like
that,
and
so
when
I
was
looking
at
this
and
looking
over
it
I
couldn't
honestly
answer
all
of
the
questions,
but
it's
at
a
point
where
it
does
meet
multiple
of
the
criteria
and
some
of
the
things
we
would
have
to
do
the
due
diligence
on
to
know
whether
it
met
more
of
them.
But
there
is
a
possibility.
H
V1
still
meets
the
criteria
and
we're
in
that
transition
phase,
and
that's
what
normally
happens
when
flux
V2
came
around
people
didn't,
say:
hey
this
one
doesn't
meet
the
requirements
yet
break
it
off
into
a
separate
project,
and
then
once
it
is,
we
bring
it
in
is
incubating,
even
though
it's
architecture
and
the
Very
way
that
it
did,
things
were
different
and
I
think
you
know
we
try
to
be
consistent
and
I
know
not
everyone's
going
to
agree
with
that.
But
one
of
the
things
that
I
know
I
work
hard
on
is
be
consistent.
H
There
are
things
that
other
Toc
members
will
know
that
I
sometimes
disagree
with,
but
if
it's
an
ongoing
decision
that
the
TOC
consistently
makes,
if
we're
going
to
revisit
that
we're
going
to
revisit
it,
so
we
now
do
it
in
a
new,
consistent
manner
with
a
justification
behind
it
and
until
then
we
will
be
consistent
with
the
way
we're
doing
things.
So
projects
know
what
to
expect
and
I.
Think
in
that
case,
being
consistent
is
okay.
H
Notary
V2
is
a
different
architecture,
different
way
of
doing
things,
but
we
don't
just
jettison
it
right
away
because
it
doesn't
meet
the
criteria
right
away
as
it's
ramping
up,
and
so
that's
just
consistency
in
our
nature,
and
it's
why
I
would
be
tentative
to
go
after
that,
because
then
we're
setting
a
new
and
different
precedent
here
and
does
it
become
now
an
ongoing
existing
precedent
for
everybody?
Is
it
a
one-off?
Why
would
we
do
a
one-off?
You
know
we
have
to
think
about
things
in
this.
H
This
macro
level
way
so
we're
consistent
people
know
what
to
expect
from
us.
They
know
how
things
operate
as
best
we
can,
and
so
that's
just
one
of
my
thinkings
on
this
and
I
did
go.
Look
at
it
and
a
number
of
the
criteria
I
can
tell
you
today
they
already
meet
things
like
the
number
of
production
instances.
I
didn't
go
chase
that
down,
because
that
takes
a
little
bit
more
legwork
than
I
was
going
to
go
put
in,
but
that's
the
kind
of
criteria
where
we're
now
getting
to
do.
They
meet
those
criteria.
D
Yeah,
thank
you.
I
I
did
want
to
see
if
Emily
wanted
to
watch
something
about
like
the
security
review
and
when
we
do
the
security
review,
what
kind
of
Security
review
Emily
did
you
want
to
take
a
turn
at
how
we
do
things?
So
people
know
what
we
do
and
when
so.
C
So
there's
a
couple
of
things
that
are
going
on
with
this,
so
the
security
tag
Justin,
who
is
a
member
he's,
a
technical
lead,
we've
gone
through
and
re
we've
revamped.
How
Security
reviews
are
done
in
the
way
that
the
structure
is
set
up,
such
that
a
self
review
by
the
project
is
usually
ideal
for
sandbox
applications
or
really
early
incubating
projects,
and
it's
a
guiding
point
for
them
to
set
up
the
security
of
their
project
from
there.
Between
incubation
and
graduation
The
Joint
review
is
intended
to
be
conducted.
C
The
combination
of
the
self
review
and
the
joint
review
are
usually
handed
over
for
a
security
audit
for
projects
that
really
weren't
that
extra
level
of
security
attention
we've
found
in
the
past
that,
having
both
the
joint
review
and
the
self
review,
as
as
precursors
to
the
security
audit,
not
necessarily
a
requirement,
but
just
having
that
extra
documentation
and
research
done,
makes
the
audits
go
a
lot
smoother
and
those
projects
are
generally
set
up
for
a
much
healthier
audit
experience
and
the
Auditors
themselves
find
a
lot
of
value
you
in
that
content.
C
Given
everything
that
I'm
hearing
currently
about
the
initial
and
indications
of
notary
V1
and
what
has
come
out
of
as
an
as
a
new
change
within
their
project,
I
would
like
to
caution
folks,
and
this
kind
of
goes
a
little
bit
to
what
Matt
verino
was
mentioning.
We
don't
necessarily
evaluate
changes
in
architecture
and
design
without
giving
them
Runway
to
start
doing
that
development
and
architecture
work
on
and
be
like
saying,
a
Harden,
your
environment.
D
Thanks
Emily,
let
me
see
if
any
of
the
other
Toc
members
have
anything
to
say:
Richie
you're,
the
cloaked.
Do
you
want
to
add
something.
D
Going
once
going
twice,
no,
no
one
else!
So
are
there
other
folks
in
from
the
community,
on
the
call
who
may
or
may
not
have
been
involved
in
the
discussions
on
the
issues
or
anything,
but
wanted
to
speak
up
a
little
bit
if
I
don't
hear,
I
can
call
on
people
too.
So
please
de-clock
and
speak.
D
B
B
Okay,
I
just
put
quickly
one
little
thing
in
the
chat,
though,
that
to
to
highlight
that.
B
A
B
Know
with
notary,
V2
or
notation
or
whatever
and
Sig
store,
even
existing
was
all
part
of
that
same
growth
and
renewal.
So
that's
not
to
say
that
it's
against
either
one
on
either
one
of
them,
but
it's
actually
for
both
of
them
and
why
we
need
to
continue
working
together.
D
Thanks
Vincent,
so
any
folks
who,
who
are
currently
part
of
the
notation
stuff
other
than
just
in
Cormac,
are
you
on
here
and
would
you
like
to
talk.
D
Okay,
I
think
we
are
reaching
the
end.
We
have
one
more
topic
to
cover,
so
thanks
for
all
the
good
conversations
here
and
the
discussions,
let's
try
to
make
each
other
better
for
sure,
and
we
will
we,
as
in
the
TOC,
will
try
to
reach
out
to
more
people
who
haven't
been
on
the
call
like
Justin
Campos
mentioned,
and
we
will
come
up
with
a
set
of
guidance.
For
you
know
the
community
at
large
does
that
sound
okay
to
everyone.
D
Okay,
thank
you
thanks
everyone.
So,
let's
go
to
the
second
part
that
we
wanted
to
talk
about
today,
which
is
the
flat
car
project
proposal,
are
any
of
the
folks
from
the
community
who
participate,
who
wrote
up
the
proposal
here
today.
L
Items
yeah
Andy
Randall
here
with
Microsoft
I'm.
Actually
the
author
of
the
of
the
of
the
pr
I
think
there's
other
folks
on
the
on
the
team.
Here,
though,
including
Princeton.
D
And
Andy,
why
don't
you
give
us
set
this
up
for
us
like
a
why
flat
car?
Why
here
and
you
know
how?
How
do
you
fit
into
the
overall
picture
that
we
are
now
that
we're
working
on
here
at
cncf
sure.
L
I
mean
black
card,
probably
a
little
bit
unique
in
terms
of
proposals
that
you're
going
to
see
for
you
know,
quotes
new
projects
coming
into
cncf,
because
it's
actually
got
history.
Going
back
to
2013
back
to
the
very,
very
earliest
days
of
cloud
native
before
cncf
even
existed.
L
You
know
core
OS
was
one
of
the
foundational
companies
in
the
cloud
native
ecosystem.
A
lot
of
people
here
have
a
soft
spot
for
core
OS,
and
you
know
core
arrest.
Container
limits
was
the
foundation
of
that
company
and
a
lot
of
the
original
Innovative
crowd
native
work
was
done
on.
You
know,
on
the
basis
of
of
core
arrest
container
Linux,
some
great
work
that
was
done
in
that
project
and
that
kind
of.
L
Obviously,
when
Red
Hat
acquired
core
arrested
company,
core
OS
container
limits
went
on
to
a
new
life
as
part
of
the
Fedora
project,
with
Fedora
core
OS
and
red
hat
core
arrests
as
the
commercial
product
built
on
that
it
kind
of
inspired.
A
lot
of
you
know
a
lot
of
the
things
that
went
on
there,
but
black
car
really
was
the
only
project
that
well
we.
L
So
we
forced
the
original
container
core
OS,
initially
in
a
kind
of
a
friendly
forkway
of
just
we
built
as
a
downstream,
but
then,
when
the
original
chorus
came
to
an
end,
we
took
it
forward
as
its
own
independent
project.
I've
been
running
it
like
that,
for
you
know
getting
on
for
three
years
now,
so
with
with
quite
a
track
record
of
putting
out
frequent
releases
keeping
up
with
security
updates.
All
of
the
kind
of
things
you
want
to
see
around
a
mature.
L
You
know
Linux
project
that
people
are
actually
putting
in
production
and
and
if
I
look
at
the
community
of
users,
we
have
it's
it's
quite
interesting
because
it
splits,
there's,
probably
you
know
close
to
half
of
the
user
base.
That
is
just
folks
that
had
already
built
on
core
OS
that
just
wanted
something
that
they
could
take
forward
and
just
point
there
up.
You
know
point
to
a
different
update
server
and
continue
getting
updates
with
a
compact,
they're
compatible
distro,
and
you
know,
probably
the
other
half
of
the
user
base.
L
You
know
who's
who's
come
to
black
car,
for
new
designs
for
new
builds
and
they're
choosing
it,
as
you
know,
without
without
having
had
that
history,
but
just
because
it's
a
it's
a
great
platform
to
build
containers
on
so
a
lot
of
benefits
to
how
how
flat
car
manages
systems
in
terms
of
security,
it's
an
immutable
OS.
So
there's
a
whole.
L
There
is
a
of
attack
vectors
that
by
having
an
immediate,
the
lowest,
you
avoid,
and
that's
I,
think
very
much
kind
of
the
way
forward
for
for
a
lot
of
Linux
distros.
Looking
at
going.
L
That
way
has
has
a
very
simple
Atomic
update
system
where
you
download
a
new
version
of
the
OS
and
in
a
b
partition
you're
running
an
a
partition
you
boot
over
to
that
when
you're
ready
to
update
if
the
boot
doesn't
take
for
some
reason
it
doesn't,
it
doesn't
system,
doesn't
start
it'll
flip
back
to
the
a
partition,
and
we
allow
you
to
have
a
lot
of
policies
around
how
that
how
those
updates
work
and
it
it
really
is
minimalistic
and
designed
for
containers.
So
it's
a
different
videos.
L
You
know
the
thousands
of
different
distros
and
they
all
have
their
own
Niche.
You
know
the
the
the
the
the
the
raison
Detra
for
flat
car
is
to
run
containers
it's
to
be
a
container
host,
so
it
has
just
the
bits
you
need
to
run
containers
it
integrates
with
container
D.
It
has
etcd
it's
a
great
way
to
run
kubernetes.
L
Some
people
are
just
running
content,
you
know
containers
unorchestrated
or
with
other
orchestrated,
so
it's
not
kubernetes,
specific
and
yeah,
and
and
and
it
has
these
kind
of
security
and
the
manageability
of
having
that
kind
of
immutable
construct
is,
is
pretty
key
when
you're
starting
to
run
at
scale,
which
is
what
you
want
to
do
in
a
lot
of
cloud
native
environments.
L
So
that's
kind
of
black
covered
project
in
terms
of
the
process
and
governance,
and
you
know
community
and
all
of
that,
so
some
some
of
you
may
may
know
the
origins
of
flat
car
came
from
a
small
small
company
called
Kinfolk,
which
was
really
just
you
know.
A
small
team
of
Open
Source
experts
actually
had
done
a
lot
of
work
for
core
OS
at
a
lot
of
the
original
contributors
to
the
rocket
container
engine.
L
So
one
of
the
early
cncf
projects
came
out
of
the
Kinfolk
team
and
it
was
actually
Chris
cool
who's.
The
he
was
the
CEO
at
Kinfolk.
Who,
who
said
hey?
You
know
we
should
we
should
do
this
flat
car
project,
so
we
we
ran
it
independently
for
for
a
while
until
kinfork
was
acquired
by
Microsoft
and
as
you
can
imagine,
a
lot
of
community
had
questions,
and
you
know
a
small
independent,
open
source
company
gets
acquired
by
you
know
one
of
the
large.
You
know
one
of
the
large
vendors.
L
What
does
this
mean
for
the
project,
and
that
was
that
was
nearly
two
years
ago
that
that
acquisition
happened,
and
you
know
there
was
it
was
I
would
say
when
we
went
into
the
acquisition.
The
discussion
was
very
you
know
was
we
were
very
clear
that
supporting
the
community
and
doing
the
right
thing
by
the
community
was
an
absolutely
key
requirement
that
we
had
as
a
team,
but
fortunately
that
was
micro.
You
know
Microsoft's
view
as
well
was
they
want
to
support
the
community
and
to
support
the
cloud
native
community
in
general?
L
Allowed
the
you
know
the
project
to
flourish,
and
you
know,
and
the
best
way
to
do
that
in
our
view
is
as
part
of
cncf,
because
that
provides
this
independent
forum
for
for
us
to
build
governance
and
to
enable
contributions
and
to
really
kind
of
you
know,
put
every
every
participant
on
an
equal
footing,
and
it
also
just
underlines
that
Microsoft's
intent
with
this
project
is
not
to
dominate
it,
make
it
a
Microsoft,
Linux
or
anything
like
that
right.
It's
it's
to
do
the
right
thing
by
the
community.
L
You
know
we'll
continue
investing
with
the
team
we've
got,
we
would
love
to
see
others
come
in
and
join
and
be
part
of
that
some
folks
already
have.
But
I
think
you
know,
particularly
when
you
have
the
you
know
the
Microsoft
name
on
it.
L
It's
it's
there's,
probably
maybe
there'd
be
people
will
be
more
willing
to
do
it
as
part
of
the
ncf
than
in
the
current
structure,
so
so
that
that's
really,
hopefully,
that
that
gives
like
the
high
level
picture,
there's
a
bit
more
detail
in
the
proposal
and
I'm
happy
to
answer
any
questions
that
come
up
here.
D
Thank
you.
So
thanks
for
the
setup
I,
so
one
of
the
things
that
we
were
trying
to
look
at
or
talk
about
earlier,
when
your
proposal
hit
was,
do
we
open
this
up?
What
are
we
gonna
find
when
we
open
this
up
and
are
there
other
projects
in
this
space
and
who
might
be
interested
like
those
kinds
of
things
like?
Are
we
set
up
to
handle
it?
D
Are
we
set
up
to
you
know
help
you
succeed
in
the
things
that
you
want
to
do
so
those
set
of
questions
the
TOC
has
been
talking
about
and
I
would
like
to
invite
anyone
on
the
TOC
if
they
have
some
questions
or
they
wanted
to
speak
to,
you
know
some
of
the
things
that
Andrew
mentioned.
L
Yeah
Dennis,
maybe
if
I
could
just
address
that
point
before
other
questions
come
in
because
I
think
that
you
know
there
is
an
important
question
and
I
address,
address
it
a
little
bit
in
in
The
Proposal.
But
I
can
imagine
you
know
the
concerns.
Oh
God,
the
floodgates
open
right,
we've,
let
in
one
Linux
distro.
L
Now
where
Linux
distro
shop,
kind
of
thing
right,
it's
I,
think
there's
something
very
specific
about
flat
car
that
it
absolutely
the
cloud
native
project
in
in
the
sense
that,
as
I
said,
it
exists
in
order
to
run
containers
and
Cloud
native
infrastructure.
On
top.
L
There
are
a
lot
of
other
distros
out
there
that
you
can
run
kubernetes
on,
but
they
exist
for
other
reasons
as
well,
so
so
that
that's
kind
of
the
the
first
point:
it's
not
unique
in
that
I
mean
there
are
other
other
os's
as
well
out
there
that
that
would
stay
there.
L
Cloud
native
Focus,
but
very
very
few
I
would
I
would
suspect.
I
mean
I,
know
of
Talos,
for
example
yeah
and
they
they
may
well
be
interested
I,
I.
L
Rocket,
you
know
that
there's
a
small
number
of
other
ones
but
I
think
it
is
fairly
constrained
and
a
fairly
small
number
and
if
they
meet
the
criteria
and
their
team's
fine
and
willing
to
maintain
them-
and
you
know
why
I
I
don't
think
the
cncf
has
shied
away
from
having
you
know
two
or
three
as
the
same,
you
know
same
category
and
it
might
even
kind
of
add
some
validation
in
the
sense
to
the
to
the
category
so
I.
L
D
Thank
you,
Justin
yeah,.
G
I
mean
just
to
follow
up
on
that
I
mean
you
know
in
the
application.
You
call
it
container,
optimized
operating
system,
I,
think
I.
Think
the
the
name
and
the
description
of
the
category
is
a
little
bit
unclear
in
a
lot
of
people's
minds
because
you're,
whatever
people
say,
Linux
distribution,
but
in
the
classic
sense
it's
not
a
nice
distribution.
G
I
kind
of
think
am
I
in
my
view,
because
you
you
can't
install
that,
like
inside
a
container
to
run
Linux,
for
example,
and
things
like
that,
it
just
doesn't
and
it's
underlying
packages
come
from
Gen
2
and
it
it
so
in
some
sense
it's
a
it's
a
way
of
using
gender.
When
Red
Hat
acquired
core
OS,
they
took
the
technology
and
applied
it
to
you
know
different
to
fedora,
so
but
I'm
kind
of
interested
in
what
you.
How
are
you
if
you've
got
a
better
term
to
describe
the
category
of
thing
that
this
is?
G
L
It's
it's
a
good
point
in
that,
so
there
are
two
very
different
categories
of
container
os's.
If
you
like,
so
there's
container
host-
and
you
know-
and
then
there's
container
base
image
right.
So
where
can
we're
we're
optimized
for
the
container
host
use
case
right?
So
that
means
a
minimal
set
of
packages.
L
You've
got
to
container
runtime
so
that
you
can
start
containers
and
we're,
assuming
that
all
of
the
runtime
dependencies
that
you
have
packaged
in
the
container
you
know
come
back
using
the
container
and
therefore
you
don't
don't
need
them
on
the
host.
So
yeah,
maybe
like
container
host
optimized
OS,
might
be
more
technically
correct.
But
if
I
think
people
understand,
you
know
that
a
base
image
is
is
kind
of
a
different
animal.
D
Okay,
thank
you
Vincent.
You
were
gesturing
about
something.
Would
you
like
your
voice?
I
think
you
were
talking
about
a
Cappy
on
the
chat
and
then
you
were
talking
about.
You
were
gesturing
when
we
were
talking
about
the
I
guess,
Gen
2,
probably.
B
Sure,
like
an
animated,
animated,
Muppet,
giving
interpretive
dance
or
people
talk,
the
Cappy
thing
was
just
you
know,
additionally,
touching
on
kind
of
like
kind
of
the
Community
Driven
side
of
things,
and
you
know,
as
Cloud
native
has
different
needs
and
demands
that
that
people,
the
things
that
has
pulled
the
most
development
and
features
and
otherwise
support
and
ongoing
iteration
for
flat
car,
has
been
Community
Driven
and
it's
been
things
like
capping.
B
It's
been
things
through
other
cncf
projects,
which
has
been
interesting
and
somewhat
of
a
testament,
because
it's
it
in
that
way.
It
is
somewhat
different
because
it's
not
a
business
driven
development
like
some
of
the
other
ones
in
the
same
similar
category
and
yes,
they
do
all
smell
similar,
but
so
I
understand
the
desire
to
to
distinguish
them
the
hand
gesturing
was
kind
of
in
the
the
path
of
yeah
flat.
Car
is
not
a
container
image,
and
it
is,
you
know,
like
core.
B
Os
was
a
derivative
of
chromium
OS,
which
is
built
from
Gen
2,
but
way
back
whenever
we've
experimented
with
having
it
do
derivatives
of
other
os's.
So
that's
it's
not
it's
not
completely
Preposterous.
So
it
is
kind
of
a
a
derivative
product
or
a
derivative
process,
but
also
even
like
when
Red
Hat
went
to
make
what
they
later
called
Fedora
chorus
or
whatever
Red
Hat
chorus.
B
They
they
use
some
of
the
Technologies,
but
still
it
was.
It
was
completely
its
home
derivative
as
well.
So
that
was
the
the.
J
D
K
K
Keep
going
yeah
yeah,
so
yeah
I,
just
I'll
read
what
I
said.
We
often
refer
to
general
purpose
distributions
versus
purpose-built
distributions.
This
is
squarely
a
purpose-built
distribution.
That's
focused
on
orchestration
data
plane
and
I
was
just
asking.
Does
it
need
to
be
categorized
beyond
that?
There
are
certainly
other
examples
of
that.
As
someone
else
said,
there's
Kalos,
there's
bottle
rocket.
Ricardo
pointed
that
out.
So
that's
all
I
was
saying.
D
Yeah
I
think
when
we
open
up
to
the
host
purpose
will
toast,
like
you
mentioned
I,
think
we
might.
We
might
kind
of
like
the
slippery
slope.
There
is
like
okay.
We
need
to
give
a
similar
consideration
for
the
container
base
images
as
well,
so
I
think
it's
natural
for
this
to
lead
to
that
as
well.
I
think
yeah
go
for
it.
Matt
I
was
looking
for
you.
H
Yeah
yeah,
you
know
in
all
of
this
one
of
the
things
that
sits
out
in
my
mind,
isn't
does
this.
You
know
join
the
Linux
foundation
in
its
family,
because
the
cncf
is
part
of
the
Linux
Foundation.
It's
where
does
it
go?
Does
this
belong
in
the
cncf
or
does
it
belong
in
the
greater
Linux
Foundation
somewhere?
And
so
this
is
one
of
the
questions.
H
That's
in
the
back
of
my
mind
that
I'm
trying
to
answer
with
everything
else
going
on
because
it
may
be
a
purpose-built
Linux
distro,
which
is
a
purpose-built
Linux
distro
belong
in
the
cncf
or
does
it
belong
in
the
greater
Linux
foundation
and
it
I
don't
actually
have
an
answer
to
it.
But
this
is
the
big
question
that
I'm
trying
to
formulate
and
answer
to
in
order
to
know
how
to
respond
to
this
yeah.
D
Perfect
before
I
hand
off
to
I
do
want
to
raise
one
of
the
things
that
we
talked
before
in
the
TOC
was
like:
hey
the
folks
doing.
This
work
are
already
part
of
our
community,
and
you
know
so
it
makes
sense
to
have
them
close
to
the
rest
of
the
things
that
we
are
doing.
So
that
was
one
of
the
thinking,
one
of
the
lines
of
thinking
that
we
had
when
we
were
talking
about
it,
Richie
go
for
it.
A
So,
first
of
all,
I
have
to
agree
that
core
is
kicked
off.
What
we,
what
we
know
called
Cloud
native,
so
there
is.
There
is
certainly
an
argument
to
be
made
for
this
to
be
part
of
cloud
native
I.
Think
it
wouldn't
be
a
slippery
slope
to
to
also
accept
other
base
images.
It
would
be
the
absolute
necessary
logical
step
and
that's
the
thing
which,
which
makes
me
a
little
bit
apprehensive.
Of
course,
we
would
be
increasing
the
overall
exposure
surface
of
the
amount
of
software
which
we
have
Within
cncf
substantially.
D
Yeah
you're
worried
that
when
we
scale
will
the
TOC
scale
will
the
tag
scale?
Will
you
know
that
kind
of
thing
right.
A
Not
only
this,
but
also
just
like
security
processes
and
and
everything
because,
like
we
are
talking
full
distributions
at
this
point,
and
we
will
not
be
talking
one,
we
will
be
talking
half
a
dozen
except
for
kubernetes.
We
don't
have
any
code
base,
which
is
nearly
as
large
as
a
complete
distribution.
I
think
it's
just
going
to
be
new
and
larger
in
a
lot
of
ways.
At
the
same
time,
yes
from
the
category,
it
makes
sense
because
core
as
everything
like
I,
absolutely
see
this
argument,
yeah.
D
And
Karina's
Matt
is
talking
hey
it's
not
just
just
the
things
that
we
talked
about.
It's
all
the
security
conferences,
marketing
Etc,
so
that
that's
very
true
Matt
Vincent.
B
Foreign
yeah
sure
to
the
to
the
question,
LF
versus
cncf
or
otherwise
was
was
a
huge
part
of
the
mulling
on
this
aspect
as
well,
and
even
as
Andy
mentioned
earlier,
like
the
kind
of
contributors
and
you
users,
customers,
whatever
you
want
to
say,
of
flat
car,
not
paying
customers
but
still
are,
you
know,
have
have
wanted
to
see
it
in
a
neutral
playing
Ground
so
that
they
can
be
more
involved
as
well.
So
that's.
A
B
Know
as
we've
worked
on
opening
up
the
governance,
that's
been
like
to
get
it
into
an
open
playing
area.
An
open
governance
area
has
been
a
huge
Focus
so
that
we
could
meet
them
where
they're
at
and
just
like,
was
said
it
it.
It's
only
focus
is
cloud
native,
so
that
makes
a
huge
difference
and
a
lot
of
the
all
the
customers
and
of
a
flat
car
already
present
and
involved
in
cncf.
B
That
would
make
it
easiest,
and
if
you
did
end
up
in
some
other
place
like
LF
or
wherever,
then
we
could
try
and
meet
you
where
you're
at
but
like
this
is
Mainline
the
purpose
and
what
you
know,
processes
that
we've
already
put
involved,
we're
literally
trying
to
meet
the
community
where
it's
at
and
to
find
that
that
slippery
slope
or
whatever
of
this
space,
even
from
conversations
had
during
the
week
among
all
the
different
OS
folks
involved
from
like
fedorical
OS,
bottle
rocket
Talos.
Otherwise,
at
the
past,
kubecon
was
really
like.
B
There
was
a
feeling
and
a
sentiment
that
in
all
the
cloud
native-
and
you
know,
the
OS
doesn't
matter
that,
like
the
OS
does
matter,
and
it's
kind
of
a
gap
right
now
like
that
people
are
either
not
talking
about
it
or
it
seems
to
be
kind
of
a
gap
in
the
landscape
of
like
it's,
it's
implicit
and
could.
Could
we
not
just
make
that
part
of
the
conversation
so
I
think
there
is?
B
There
is
kind
of
like
we're
touching
on
like
a
surface
tension
with
with
with
this
topic,
but
to
truly
Express
the
sentiment
from
our
side
is
that
it's
it's
purely
Community
Driven
in
this
entire
effort.
So
that's
all.
D
Right,
just
just
to
give
you
all
some,
what
we're
looking
at
is
first
USC
has
to
make
a
decision
and
it
should
document
it,
and
we
need
some
public
comment
period
or
something
similar
to
let
the
community
know
that
we
are
trying
to
do
this,
so
that
will
kind
of
like
precede
the
actual
fat
card
proposal,
because
we
are
doing
this
for
the
first
time
and
we
don't
know
what
we'll
end
up
you
know
so
how
we
are
going
to
make
that
decision.
D
Some
of
the
things
that
we'll
have
to
end
up
talking
about
would
also
include
hey,
you
know
our
own
licenses
and
copyright
and
those
kinds
of
things
we
yes,
the
TOC
has
to
bless.
It
is
agree
that
we
need
to
open
it
up
first,
but
then,
immediately
after
we'll
face
those
kinds
of
questions
that
we
can't
answer
by
ourselves,
we'll
have
to
rely
on
CNC
of
staff,
and
then
we
need
to
go
back
to
the
cncf
GB.
D
There
are
some
things
in
the
charter
that
we
might
have
to
do
something
about.
There
is
a
legal
Committee
in
GB,
so
you
know
have
this
in
the
back
of
your
mind,
so
it's
not
just
the
TOC,
but
there
is
other
things
that
we
need
to
push
and
lead
and
like
prod
and
move
people
towards
to
make
it
happen.
Okay,
we
have
two
more
minutes.
Jesse
did
you
want
to
say
something
quickly
or.
K
I
put
it
in
chat,
I,
just
I
was
being
too
abstract
before
and
I
wanted
to
tie
it
back
to
exactly
the
point,
so
I
think
I,
think
oversight
and
governance
is
best
attached
to
use
case,
and,
and
so
that's
I
guess
to
put
a
fine
point
on
it.
Yet
it
is
an
OS
distribution,
it
could
go
in
the
LF.
The
main
use
case
here
is
data
plane
for
orchestration
and,
let's
not
beat
around
the
bush.
K
Orchestration
typically
means
kubernetes,
so
I
just
kind
of
wanted
to
say
that
I
think
that,
as
you
consider
this,
where
are
the
people
that
are
going
to
be
using
using
it
and
needing
for
it
to
be
a
healthy
project?
Where
are
they
co-located
and
I?
Think
that
that's
sort
of
what
vbas
was
saying
as
well.
D
Also,
if
there
are
more
of
the
same
category,
then
there
will
be
more,
hopefully
more
cross
pollination
between
the
teams.
So
that
is
something
that
I
look
forward
as
well
Andrew.
Do
you
have
any
last
minute
to
say.
L
I
I
just
want
to
really
just
underscore
Vincent's
point
that
the
you
know
the
community
around
flat
car,
just
overlaps
one-on-one
with
the
community
here
or
it's
a
subset
of
you
know
the
broader
Cloud
native
Community
I
mean
the
people
we
talk
to.
It's
always
we'll
see
you
at
kubecon.
L
You
know
that
I
mean
that
that
is
the
pond
that
we
play
in
those
are
the
people
we
talk
to
you
know
and,
and
that
was
really
the
driving
consideration
when
it
came
down
to
thinking
about
well,
should
we
clf
or
should
we
pursue
yeah.
D
Thank
you.
Please
have
patience
with
us
as
we
work
through
this,
and
you
know
we'll
definitely
involve
you
in
the
discussions
as
they
go
forward.
Okay,
thank
you.
So
much
everyone
bye
see
you
next
time.
Thank.