►
From YouTube: Kubernetes SIG Security 20221215
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
C
D
Cool
all
right,
so
this
is
like
the
best
surprise,
to
end
the
New
Year
Tabby,
to
see
both
of
you
in
the
same
space
in
the
same
window,
so
so
great
to
see
that
hi.
This
is
pushkar.
I
am
sick.
Security
tooling
lead
here
to
make
my
and
everybody
else's
dreams
come
true
to
make
kubernetes
more
secure.
J
Hey
I'm
Craig
I'm
having
camera
issues
today,
but
I
do
kubernetes
security
stuff
at
Google
and
here
also
to
see
where
I
can
help.
J
Hi
I'm
will,
from
any
service
team
I'm
collaborations
underneath
service
there
in
smallness
and
then
so
that
I
can
learn.
I
Oh
can
I
say:
oh
hi,
I'm,
Jing,
yeah,
I,
think
I.
Don't
know
why
the
zoom,
the
zoom
name
is
not
the
same
yeah.
It's
not
search
right,
so
I'm,
Jing
and
I'm
in
the
same
team
as
well,
and
so
we
are
both
from
the
Azure
kubernetes
service.
We
are
working
on
a
Securities
for
the
yeah
for
ATS
yeah
nice
to
meet
you
guys
and
I.
Think
we
I'm
not
sure
if
you
still
remember
a
previous
attention,
which
is
a
new
method,
I
think
he
he
we
are
from
the
same
team
yeah.
B
A
You're
just
coming
in
for
the
tail
end
of
introductions.
If
you
want
to
introduce
yourself
hello,.
H
Perfect
I
wasn't
sure
if
this
was
a
good
this,
that
silence
was
actually
that
opportunity.
Yeah,
hey
folks,
I'm
Allah,.
K
I
am
the
lead
for
the
self-assessments
sub
project
and
yeah
always
have
as
always
happy
to
be
here.
Pronouns.
She
heard.
B
Hi
everybody
welcome
so
next
up
what
we
do.
A
After
introductions,
and
if
you
have
not
put
your
name
and
pronouns
in
the
agenda,
we'd
like
to
encourage
you
to
here,
is
the
agenda
DOC
for
anybody
who
doesn't.
A
Next
off
we
have
subgroup
reports,
so
this
is
where
we
have
report
Backs
from
our
subgroups,
and
their
leads.
First
up
on
the
list
is
at
the
third
party
audit
subgroup.
The
third
party
audit
subgroup
is
when
we
contract
with
third
parties
to
get
periodic
kubernetes
security
audits
done.
Our
subgroup
lead
for
that.
Ray
is
not
here
today,
so
I'm
speaking
for
him
and
In
Absentia.
The
thing
on
the
agenda
here
is
Ray
and
abstention.
A
No
update
from
last
week
will
ping
the
security
response
committee
on
the
status
of
their
final
review.
We
just
got
a
security
audit
done.
We
are
very
excited
to
see
the
results.
Publishing
is
waiting
on
review
from.
B
F
I
would
probably
can't
say
the
first
part,
apart
from
say,
whatever
computational
Computing
blog
post,
because
I've
not
been
too
up
on
that
one.
The
other
one
that's
mentioned
in
the
report
is
we
had
an
idea
for
the
hardening
guide.
We've
had
the
idea
of
a
hardening
guide,
we're
communities
for
a
while
and
I've
been
doing
some
content
on
PCI
guidance
for
kubernetes
or
containers,
there's
a
link.
F
If
you
want
to
read
them
and
we
thought
we
might
be
able
to
reuse
some
of
that
so
I'm
meeting
with
Killen
next
week
on
that
next
Wednesday
I
think
my
plan
is
we're,
gonna,
be
and
sync
up
on
what
we
can
and
can't
do
there
nice
so
yeah
as
I've
already
written
it.
Some
of
it
should
be
repurposable.
A
One
of
the
things
that
got
mentioned
in
the
last
meeting
was
a
newer
person
suggested
that
maybe,
as
part
since
we
introduce
ourselves
and
talk
about
our
own
roles,
as
we
are
doing,
group
report
backs,
we
describe
what
the
subgroups
do
as
sort
of
part
of
the
introduction
process.
Does
anyone
want
to
describe
what
security
docs
does.
F
And
try
so
essentially
I
guess
we
look
at
a
number
of
things.
We
look
at
improving
the
documentation
for
the
kubernetes
site
itself.
So
if
you
go
to
community
site
you'll
see,
we've
got
docs.
We've
added
new
pages
there.
So
to
try
and
like
provide
areas
where
kubernetes
can
be
a
bit
complex.
Can
we
provide
some
more
details,
then
also
there
are
like
additional
new
things
like
the
hardening
guide
or
like
mahe,
led
the
process
for
a
checklist
so
that
as
well
and
then
also
blog
posts.
A
Was
great,
does
anybody
have
any
thoughts,
questions
or
ideas
or
whatever
about
the
docs
things
that
just
got
mentioned.
D
F
Those
the
computer
security
sketches
where
I
put
a
lot
of
like
generic
container
security
stuff.
If
you
know
it's
a
GitHub
repo,
so
if
anyone
thinks
they
want
to
add
things,
it's
just
a
site:
I
I'm,
a
bad
hoarder
of
domain
names
and
like
I,
try
to
use
them
for
something
so
they're,
not
just
sitting
there
doing
nothing.
So
this
one
I
actually
managed
to
purpose
and
say:
okay,
this
one
has
a
purpose
and
it's
just
a
GitHub
Pages
site,
but
because
the
blog,
like
blog,
is
like
temporal,
so
I
wanted
to
have
a
list.
F
D
All
right,
yeah
I
was
absent.
Yes,
last
time
so
I'll
explain
what
tooling
does
so.
The
main
goal
was:
can
we
help
other
people
who
are
already
working
on
security
in
kubernetes
space,
shine,
a
light
on
them
by
doing
learning
sessions
and
the
other
pieces
also
trying
to
do
our
best
to
write
code
to
improve
kubernetes
security
within
the
project
itself,
as
well
as
help
other
tools
that
are
doing
a
great
job
outside
of
the
space
helping
kubernetes
more
secure?
D
So
we
work
with
our
sub-projects
to
our
Docs
assessments,
audit,
as
well
as
all
the
other
six
in
kubernetes
to
essentially
make
kubernetes
more
secure
by
writing
code
or
learning
about
code.
So
hopefully
that's
helpful.
I
have
couple
of
updates.
We
did
a
somewhat
different
learning
session
last
time
where,
instead
of
as
somebody
just
presenting
slides,
we
actually
did
a
PR
review
of
one
of
the
blogs
that
is
coming
up
in
January
and
everybody
just
did
a
silent,
read
first
added
some
comments.
D
Then
we
reviewed
some
of
the
comments
that
we
could
with
the
time
we
had,
and
hopefully
that
was
helpful
David,
who
is
really
written,
a
good
blog
about
how
to
do
Behavior
security,
Behavior
Analysis,
essentially
for
all
the
microservices
that
can
run
in
kubernetes
next
update
is
the
CV
feed
that
we
have
today,
which
is
an
alpha
now
we,
with
the
release
of
version
126,
if
you
haven't
heard,
was
released
early
this
year
or
early
this
week
or
late
last
week,
so
with
version
126
released,
we
had
planned
to
start
working
on
the
updates
to
CBE
feed
on
version
127
of
kubernetes.
D
So
now
that
we
are
officially
in
that
phase,
we
have
a
list
of
things
to
do
to
improve
the
feed.
It's
in
the
linked
issue
there
under
Section
Alpha
to
Beta
graduation
scope.
So
if
anyone
is
taking
a
look
at,
it
wants
to
do
some
hacking
over
the
break
or
New
Year's
break.
Take
a
look
at
one
of
those
issues.
Start
writing
something
that
would
make
sense,
ask
questions
as
part
of
the
issue
and
then
we
can
figure
out
what
we
can
do.
I.
Definitely
can't
do
it
all
alone.
A
Okay,
next
up,
we
have
a
report
back
from
our
security,
self-assessment
subgroup
Allah.
What
is
security
self-assessments
and.
K
The
the
threat
modeling
sub
project
for
in
six
security
and
yeah
so
I
can
add
in
a
link
to
the
notes
just
for
reference
for
the
Cappy
self-assessment,
just
as
a
reference,
but
that's
sort
of
what
what
the
group
is
tasked
around.
So
no
updates,
just
due
to
lack
of
bandwidth
I,
haven't
been
able
to
see
daylight
through
my
calendar
for
the
weeks
between
Thanksgiving
and
Christmas.
It's
just
been
super
busy,
but
yeah.
K
The
to-do
list
just
remains
getting
the
vsphere
CSI
driver
assessment
up
and
running,
and
that's
sort
of
the
the
main
thing
thinking
getting
back
to
the
idea
of
doing
a
threat.
Modeling
workshop
at
kukan
EU
the
discussion
that
we
had
last
week
around.
K
You
know
a
data
flow
diagram.
Being
a
really.
You
know,
kind
of
the
foundation
of
doing
a
good
threat
model
struck
me.
As
you
know,
maybe,
instead
of
doing
the
threat,
modeling
Workshop
I
know
Ian,
we
had
discussed
doing
a
talk
for
like
here's,
how
you
do
a
good
data
flow
diagram,
but
I
was
thinking,
maybe
even
to
like
cut
it
back
like
you
know,
just
like.
K
K
We
could
do
the
throat
modeling
workshop
for
anyone
who
who's
interested,
but
that
we're
creating
kind
of
that
like
knowledge
base,
instead
of
artifacts
to
build
threat
models
off
of
to
begin
with,
because
yeah
I
was
just
thinking
about
like
just
reflecting
on
my
own
experience
in
terms
of
like
wow
there's
so
much
tiller
and
everything
goes
so
quickly
and
that
there's
so
much
implied
or
assumed
knowledge
and
I
was
like
yeah.
Maybe
like.
K
Let's
like
take
a
half
step
back
and
like
you
know,
data
flow
diagramming
is
great
for
several
reasons:
security
being
one
of
them.
So
that's
just
an
idea.
I
had
I'd
love
to
hear
folks's
thoughts
on
that
I.
Don't
know
if
that's
too
conservative
but
I
think
it
would
still
be
useful.
D
I
got
an
update
this
morning
on
some
of
the
collaboration
you
were
doing
Allah
with
the
tax
security
folks
on
doing
something
similar
at
cncf
level,
in
terms
of
giving
educational
feedback
and
material
for
anyone
trying
to
do
an
assessment
or
a
threat
model
so
looks
like
Justin
and
one
of
the
tech
leads.
D
Raga
has
made
some
progress
and
they're
going
to
share
something
soon
in
term
for
feedback
and
some
overall
edits
and
suggestions,
I'm
guessing
that
would
take
until
end
of
the
year
but
worth
for
us
to
take
a
look.
So
whenever
I
see
something
I'll
cross
post
it
on
our
channels,
and
we
can
all
take
a
look
awesome.
K
Yeah
and
I
also
Kalyn
shared
with
me
earlier
in
slack
that
there
is
a
threat
modeling
workshop
at
Cloud
native
security
con,
so
I,
don't
know
if
I'm
going
to
be
there
in
person,
but
I
should
definitely
catch.
The
recording
of
that,
for
you
know
just
just
to
have
a
reference
for
a
session,
see
how
it
goes
and
everything
but
yeah,
I,
guess
the
thing
that
strikes
me
is
even
for
that.
You
know
again.
It's
like
do
people
even
have
the
skill
set
to
do
a
proper
data
flow
diagram.
K
You
know
it's
like
that.
That
really
seems
like
the
linchpin,
because
once
you
do
that
once
you
have
a
really
good
understanding
of
like
deeply,
you
know:
how
are
you
architected?
Where
are
your
trust,
boundaries
and
stuff?
It's
like
them.
You
know,
then
you
can
you.
Can
you
can
get
down
and
dirty
into
the
threat
model,
but
it's
that
key
piece
of
just
mapping
out
just
what
you
have
to
begin
with.
So.
D
H
D
A
K
A
Not
opposed
my
two
questions
that
come
to
mind
immediately
is
one
if
it's
an
incremental
step.
It's
kicking
the
can
down
the
road
a
little
bit,
but
we
can't
assume
that
everybody
who
was
at
Workshop
one
at
onecubecon,
will
have
been
at
workshop
two
at
the
second
kubecon,
and
so
as
a
moderator.
You're
still
gonna
have
to
deal.
A
That
doesn't
I
mean
that's
fine.
You
know,
like
I,
didn't
say
that
to
try
to
dissuade
you
or
discourage
you
just
like
that's
a
thing
to
know
that
that
is
going
to
be
a
thing.
A
The
other
thing
is:
are
there
projects
and
I'm
vaguely,
remembering
that
there
are
but
I'm
I
have
not
had
any
coffee
today
for
full
disclosure
as
a
moderator,
and
so
it's
entirely
possible
that
I'm,
forgetting
this
entirely
are
there
projects
that
are
really
rare
Indigo
to
do
these
threat
models
or
self-assessments
at
kubecon
EU,
because
if
there
are-
and
we
are
stepping
back
a
little
bit
to
do
a
DFD
thing
instead
are
we
doing
a
disservice
to
those
projects,
because
I
want
to
make
sure
that
if
people
are
excited
about
this
that
that
they
have
some
mechanism
to
hook
up
with
us
to
do
this,
you
know
like
I,
don't
want
to
try
to
tell
everybody
who
wants
to
threat
model
for
themselves
that
they
need
to
wait
for
another
six
months
to
a
year.
A
K
Yeah
no
and
I
the
answer
to
that
is
I,
don't
know.
I
haven't
been
able
to
do
the
socialization
that
I've
been
wanting
to,
but
I'm
just
thinking
about
like
how
can
I
accelerate
that
I.
Think
I
just
need
to
go
to
like
every
every
slack
Channel
that
I
can
and
just
post
and
say
hey.
You
know
this
is
a
service
and
that's
available.
K
A
Could
also
there's
also
email
lists
for
I,
think
both
chairs
and
tech
leads
and
for
kadev
yeah.
K
And
I
didn't
I
was
also
thinking
like
just
sending
out
an
email
on
just
like
the
mailing
list,
like
the
all
kubernetes
mailing
list
like
okay.
So
why
don't
yeah,
because
I'm
I
wanna
I
wanna
pick
up
acceleration
on
this?
So
I'll
use
those
asynchronous
methods
to
track
down
appetite,
and
then
you
know
really:
it's
like
just
driving
like
here
I,
remember
Gwen.
She
shared
a
talk
that
I
haven't
been
able
to
to
listen
to
with
us
through
a
data
flow
diagramming
tutorial.
K
So
just
sharing
those
resources
that
are
like
here
go
read
this
go
look
at
this.
This
is
how
to
do
a
proper
data
flow
diagram
and
just
trying
to
drive
that
more
asynchronously
I.
Think
that's
where
I
keep
on
getting
stuck
is
like
yeah
trying
to
do
everything
like
in
person,
and
it's
like
I
need
to
get
more
creative
with
them.
K
A
K
But
like
I'm,
seeing
I'm
seeing
places
where
I
can
I
can
pick
up
velocity
a
little
bit
by
just
doing
things
more
asynchronously,
so
I
should
I
should
do
that.
Speaking
of
doing
things
in
person,
that
I
should
be
that
I'm,
not
I,
I,
guess,
Ian
and
Tabby.
How
can
I
work
with
you
to
get
a
meeting
on
the
calendar
for
just
for
the
self-assessment
sub
project.
C
Send
us
send
us
a
slack
DM
I
will
I
I
will
I
will
break.
My
I
will
break
my
leave
in
order
to
create
you
a
Google
Calendar
and
that's
not
a
big
deal.
Awesome.
K
Okay,
because
yeah
I
think
that's
also
where
I
could
like
again
go
into
select
channels
go
on
the
community.
You
know
go
on
the
the
mailing
list
and
say:
hey
here's
our
meeting
or
here's
the
meeting
come
to
it.
Here's
here's
the
stuff
that
here
are
the
ideas.
I
have
as
it
sounds
interesting
to
you
like,
come
meet
up
and
we'll
we'll
talk
about
it
and
and
stuff
like
that.
So
that's
another
thing
that
I
can
do
to
like
Drive
just
drive
like
more
engagement
and
velocity
and
stuff.
So.
A
H
A
Do
know
that
there
is
that
much
interest
I
wonder
a
little
bit
having
read
that
and
I'm
I'm
brainstorming
here,
not
with
my
chair
hat
on,
if
like,
if
we're
putting
the
cart
before
a
horse
a
little
bit.
If
we
are
not.
L
A
Of
the
extent
of
the
interest
or
who
is
interested,
which
might
be
figuring
that
out
I
think
might
be
a
good
guide
in
terms
of
like
how
imminently
we
need
to
have
all
of
this
infrastructure
set
up
and
like
what
that
time
in
person
might
look
like,
because
if
it
is
just
Coop,
CTL
and
60
alive,
then
it
can
be
a
thing
that
is
much
smaller
and
Cozier
and
more
kind
of
like
you
know,.
A
And
you
know,
and
if,
if
it's
a
lot
of
projects
then
then
maybe
that
looks
a
little
different
and
it
could
look
like
a
larger
Workshop
but
I
think
figuring
out.
The
extent
of
that
seems
like
that
might
be
helpful
and
if
there
is
a
place
that
that
is
being
that
that
data
is
being
put,
that
seems
like
a
good
way
for
everybody
to
remember
and
be
able
to
plan
around
it.
And
if
there
isn't.
K
And
I
think
that's
where
I
can
use
the
the
intake
mechanism
we
have
in
in
the
issue:
template
yeah,
yeah.
C
K
Just
just
get
it
just
direct
people
there,
so
it's
like
open
and
and
stuff,
but
you
know
it's
also
now
that
I'm
thinking
about
it,
it's
sort
of
like
having
like
a
Readiness
checklist
for,
like
you
will
be
prepared
to
do
this
workshop
and
get
the
most
out
of
it.
K
If
you
have
X,
Y
and
Z,
and
if
you,
if
you
you
know,
if
you
have
a
data
flow
diagram,
that's
really
the
the
fundamentals,
and
you
know
by
the
way,
if
you
don't
here's,
what
a
good
one
looks
like
and
if
yours
doesn't
look
something
like
this
go
go
look
at
this
resource,
so
to
speak
so
trying
to
just
like
tee
up
yeah,
just
teeing
up
the
preparation
to
be
appropriate,
but
also
like
not
super
daunting.
A
I
think
a
writing.
This
checklist
is
a
great
idea,
because
that
way,
everybody's
on
the
same
page-
and
you
know
the
scenario
in
which
people
show
up
and
are
like
I'm
excited
about
this
and
don't
have
any
of
the
prep
done-
can
be
mitigated
somewhat
by
having
a
place
to
point
people
to
so
that
they
get
an
idea
of
what
that
might
look
like,
because
I
know
for
me.
K
Exactly
okay,
so
funnily
enough,
I
think
the
vsphere
CSI
driver
when
I
post
Shang
for
just
like
documentation
and
where
we
can
start
I
I
from
what
I
remember
her
architecture
diagrams
were
pretty
good,
so
I
couldn't
take
another
look
at
those
and
just
but
you
know
just
just
like
links.
Also
the
Cappy
I
mean
the
the
data
flow
diagrams
for
the
Cappy.
Self-Assessment,
obviously
are
fantastic.
So
that's
like
another
gold
standard.
I
can
point
to
as
well
so,
okay,
so
yeah
I
think
so.
K
Yeah
I
think
my
actions
are
get
on.
The
mailing
list
get
in
Slack,
see
what
the
appetite
is
for
this
and
then
build
a
Readiness
checklist
for
you
know
whether
I
mean,
and
it's
like
whether
you
want
to
do
it
in
person
in
Amsterdam
or
asynchronously.
You
want
to
do
it.
It's
like
here's.
What
you
need
like
step
step.
Zero
is
always
this,
no
matter
what.
A
A
K
No
but
I
I
I
definitely
take
your
point
in
terms
of
let's,
let's,
let's
gauge
the
appetite
for
actually
doing
the
threat
modeling
for
people
who
are
ready,
who
do
have
the
proper
collateral
in
place
and
blah
blah
blah,
and
then
we
can.
We
can
kind
of
feel
out
the
data,
the
data
flow
diagramming
stuff
around
that
yeah.
That
feels
that
feels
good,
so
cool
yeah.
That's
that's
everything
for
me
and
tabini
and
all
shoot
you
a
DM
for
to
to
get
a
meeting
in
place
for
self-assessments,
which
is
long
overdue.
A
L
I
I
just
put
something
on
the
chat.
It's
a
great
idea
like
I
will,
if
I'm
gonna,
be
there
I'll
be
there
for
this
Workshop
if
that
happens,
or
like
whatever
the
planning
and
stuff,
but
I
want
to
like
point
out
that
new,
the
CNC
of
mail
came
out
like
a
couple
days
ago.
I
don't
know
like
I,
don't
remember
the
dates
and
time
these
days,
but
then
it
mentioned
that
it's
gonna,
the
coupon's
gonna
run
from
Tuesdays
Thursdays,
and
that
will
be
one
day
for
colosse.
L
L
I
have
no
idea.
If
it
happens,
then
it'll
be
like,
so
the
point
of
that
they
mentioned
is
that
that
they
don't
want
to
keep
or
have
multiple
keep
things
like
for
a
week
or
something
it's
long,
and
it's
extensive
Friday
and
most
folks,
like
I
generally,
am
like
done
on
Friday
like
I,
just
want
to
say,
hi
and
like
bye
and
then
like
get
on
the
plane.
So
I
think
the
idea
is
like
they
are
keeping
it
short
I,
don't
know.
L
Maybe
we
could
reach
out
and
ask
like
how
it's
gonna
be
planned
like
if
everything
happens
on
the
same
day,
then
we
people
would
be
like
going
to
multiple
things
and.
A
Yeah
the
reason
why
contributors
Summit
was
taken
out
of
being
at.
A
Exact
thing
happening
and
because
everybody
would
go
to
different
colos,
not
be
a
contributor
Summit
where
they
needed
to
be,
or
they
would
be
at
contributor
Summit
and
not
be
at
the
colos
when
they
needed
to
be,
and
people
were
speaking
at
different
colos
and
it
was
a
mess.
A
That
it
is
not
so
that
everything
has
been
put
back
in
on
the
same
day,
but
if
so,
that's
a
really
good
call
out,
because
that's
that
does
affect
the
way
that
people's
time
looks,
especially
if
it's
something
like
I'm
totally
pulling
a
project
out
of
the
air
right
now,
like
Prometheus,
decides
that
it
wants.
You
know
a
self-assessment
done
at
the
same
time
as
prom
con.
A
That's
going
to
get
weird
So
like
yeah
good
call,
let's
try
to
figure
that
out
and
and
make
plans
with
that
in
mind,
because
that
wasn't
on
my
radar.
So
thank
you.
Savita.
L
B
A
Good
call,
and
that
also
might
I
mean
chairs
and
tech
leads,
is
also
probably
going
to
be
on
that
beat,
and
so,
if,
if
we're
talking
to
chairs
and
tech
leads
about
what
people
need
for
their
projects,
that
that
might
be
a
good
thing
to
ask
about
there
too.
A
Okay,
Ola
dropped,
but
we
can
we
can
catch
her
up
when
we
talk
to
her
okay,
we
have
a
very
rare,
empty
discussion
section
today.
Normally
people
will
if
they
feel
inspired,
I,
guess
not
normally
always
if
they
feel
inspired
or
have
something
to
talk
about
or
something
to
say
or
something
happening
that
they
want
to
call
attention
to,
or
whatever
people
will
put
it
in
the
discussion
section
and
sometimes
maybe
nobody
has
nothing
to
say
which
is
also
okay.
E
E
A
Are
we
having
a
meeting
two
weeks
from
now
on
the
29th
of
December?
It
is,
it
does
not
fall
on
any
holidays,
except
for
maybe
I,
don't
I,
don't
know
about
everybody's
I
guess
but
does
not
fall
on
any
obvious
ones
off
the
top.
Does
it.
C
A
A
Up
that
day,
fair
enough,
okay,
all
right
does
anybody
else
have
anything
that
they
want
to
talk
about.
My
hair
is:
writing
downstairs.
What's
up
with
stick
off
yeah
I.
G
Just
remembered
because
I
was
trying
to
to
write
stuff
and
everything
I
just
saw
that,
but
the
people
from
actually
came
back
to
me
because
I
always
skipped
their
meeting
one
time.
I
waited
for
two
hours
in
my
office
for
their
meeting
and
I,
just
learned
that
it
was
canceled
so
and
they
can
solve
two
regular
meeting,
I
think
so
yeah.
It
was
difficult.
G
Yeah,
it's
super
hard,
like
I,
think
at
one
meeting
each
month
and
so
yeah
anyway.
I
think
I
will
be
finally
speaking
with
them
at
the
beginning
of
January,
if
I'm,
if
I'm
available,
because
usually
the
meeting
is
quite
late
in
the
evening
for
for
us
in
Europe,
so
yeah
anyway,
the
I
think
one
of
the
lead
took
the
issue
into
the
into
the
task
list
into
the
schedule
for
like
the
next
three
days
or
so
so.
G
Yes,
yes,
yes,
yes,
but
it's
difficult
to
get
in
touch
with
them.
It's
a
bit
difficult.
D
G
Yeah
yeah
sure,
sorry,
it's
it's
about
the
removal
of
admission
plugin,
which
is
named
security
context
deny
so
we
add
this
discussion
in
security
about
trying
to
remove
this
thing
from
the
code
base,
because
it's
today
completely
useless
and
at
most
like
whiskey
and
like
we
went
to
the
step
when
it
was
interesting
for
for
us
to
discuss
directly
with
the
seek
out.
We
seek
out
to
actually
finally
remove
this
thing,
so
I'm
trying
to
reach
them
and
I'm
struggling
a
little
bit
because
of
holidays
and
stuff.
C
Me,
given
the
positive
reactions
that
you
have
gotten
from
cigarth
folks,
like
on
slack
or
like
on
the
GitHub
issue,
things
like
that
and
the
Really
nicely
confined
scope
of
this.
C
C
Supported
already
so,
like
I,
wouldn't
put
in
the
pr
to
KK
that
deletes
all
the
code.
That
was
that
would
be.
That
would
be
premature
but
like
if
you
started
writing
up
a
cap
and
like
sent
that
to
the
Sig
off
mailing
list.
Like
hey,
you
know
like
just
doing
some
early
work
on
this.
Please.
You
know
please
make
comments
that
might
help
to
generate
further
interest
and,
like
you
may
end
up
with
a
cap
before
they
even
have
a
meeting.
A
Glad
to
agree,
and
also
in
my
experience
with
sigoth,
if
they
have
an
opinion
supportive,
they
will
tell
you
so
if,
if
everybody
is
giving
you
a
very
positive
reaction,
that
is
a
very
positive
sign.
G
Okay,
okay,
because
I
think
I,
like
I,
started
to
write
this
this
little
cap
and
team
Bannister
at
the
remark
like
that.
Maybe
we
should
write
a
retrospective
cap
for
the
future
and
then
do
the
removal
process
for
the
future.
You
know
I
try
to
write
the
cat,
but
for
the
intro
feature,
so
it
seems
a
bit
weird
and
in
the
end
it's
only
to
remove
like
this
tense
line
of
codes,
but
yeah.
Maybe
I
should
try
it
with
the
removal
cap,
but
it
will
be.
G
C
G
Yeah
exactly
because,
if
we
have
to
ride
the
Wool
Cap
and
then
try
to
remove
the
feature
and
everything
just
remove
these
10
lines
that
are
pretty
much
useless,
nobody
will
have
the
courage
to
to
go
on
the
whole
process.
So
right,
yeah
I,
think
it's
a
good
idea
thanks
thanks
I
hope
it
helps
yeah.
It
does.
A
The
discussion
section
right
now
so
I'm
gonna
leave
it
open
for
a
minute
for
anybody
to
bring
up
anything
they
want
to
and
then
we'll
call
it
and
then,
if
nobody
wants
to
bring
anything
else
up.
That
is
chill
and
good
and
I
think
that
the
general
meeting
consensus
seems
to
be
that
people
are
enthused
about
not
having
the
next
meeting.
A
Although
we
have
not
asked
on
psych
but
so
I
won't
say
see
you
in
two
weeks,
I'll
say
see
you
in
two
weeks,
maybe
four
or
four
or
maybe
two
I,
don't
know
anybody
else
have
anything
they
want
to
bring
up.
B
B
See
you
I
hope
you
all
have
absolutely
wonderful
holidays
in
whatever
way
you
celebrate.