►
A
A
Okay,
so
we've
got
a
yeah.
We've
got
a
light
group
today,
we're
probably
not
going
to
be
able
to
get
to
some
of
the
things
that
we
had
talked
about
like
that
focused
session
working
on
that
what
we're
calling
that
ingestion
engine
on
GitHub.
So
we
could
take
this
time
to
just
discuss
any
general
project
updates
any
updates
from
any
of
the
individual
folks
here
today
or
any
any
other
topics
that
you'd
like
to
discuss
Jeff.
Does
that
sound
good?
A
We
could
probably
even
have
a
light
meeting
today
too.
For
that
really
sounds
good
to
me.
Okay,
cool
cool,
so
I
know:
we've
had
some
updates
from
criticality
score.
I
have
seen
I'm
sure
a
lot
of
you
get
the
the
emails
as
well
for
all
the
work
that
they're
doing
fine-tuning
that
so
I'm
sure.
Next
time
we
have
Caleb
in
the
room
we
can
meet
with
him.
A
A
C
Yes
actually
and
I
do
have
updates,
because
Caleb
messaged
me
to
be
honest
with
you
last
week
that
saying
that
he
did
get
the
criticality
score
package
and
it
is
in
a
Docker
container.
So
unfortunately,
I
have
been
so
backed
up
with
doing
proposals
and
budgets
and
all
sorts
of
stuff,
because
you
know
it's
that
time
of
year
that
I
haven't
been
able
to
test
it,
but
it
is
in
the
criticality
score
repo
already
the
docker
file.
C
C
But
he
is
also
interested
in
putting
together
a
list
kind
of
having
what
what
he
proposed
was
kind
of
having
multiple
people
like
Intel,
for
example,
kind
of
put
together
a
list
of
their
most
most
critical
packages
and
having
other
organizations
do
the
same
thing
and
then
making
a
list
based
on
the
amount
of
times
that
certain
packages
show
up
on
anybody's
list.
So
he
wanted.
He
wanted
to
get
feedback
on
that,
and
I
told
him
that
this
would
be
a
better
group
to
be
at
so
we
might
be
seeing
him
soon.
C
A
I
could
see
something
like
yeah,
where,
if
we
have
a
let's
say
a
couple
of
organizations
or
really
anybody
who
wants
to
if
they
have
let's
say
their
list
of
projects,
if
there's
a
way,
we
can,
like
you
said
both
capture
that,
but
also
cross-reference,
that
to
see
like
hey,
this
project
has
come
up
on
every
single
person's
list
or
hey.
This
project
is
only
on
your
list
and
nobody
else's
list.
I
think
that
would
definitely
help
us
provide
some
ins
provide
some
insights.
A
C
F
C
C
Would
be
helpful,
I
think,
because
I
know
that
Caleb
has
already
run
into
that
one
a
few
times
and
it
is
frustrating
but
but
yeah,
but
I
would
say
that
that's
that
has
been
like.
We
are
leveraging
that
I
think
to
some
degree.
I,
don't
know
to
what
extent,
but
I
do
know
that
we
are
leveraging
some
of
those
things.
However,
as
I
said,
then
the
question
also
becomes:
what
are
you
going
to
do
about
get
lab
and
Source
Hut?
Of
course
you
know.
F
G
G
G
D
A
This
set,
you
know
if
we
just
basically
did
a
like
an
exercise
either
within
this
work
group
or
within
the
open,
ssf
or
really
The
Wider
Community,
where,
if
we
had
everybody,
come
up
with
a
set
of
10
projects
that
they
think
are
just
like
absolutely
critical
and
we
just
cross-reference
those
I'm
sure
we
would
get
a
lot
of
things
that
have
come.
You
know
that
come
up
multiple
times
and
you
know
I
and
we
can.
C
They're
we've
been
talking
to
people
the
kind
of
a
little
preemptively
about
kind
of
what
they
also
think
the
cert
would
be
good
at
helping
out
with,
and
what
people
have
indicated
is
that
there's
certain
communities
that
are
difficult
to
interface
with
so
therefore
they
do
not
interface
with
them,
so
maybe
bringing
people
together
so
that
people
don't
fix
things
in
isolation
and
sometimes
aggravate
the
problem.
Even
further
is
another
thing
the
cert
can
help
with
like,
but
then
there's
a
question
of
okay.
Well.
C
C
G
Yeah
I
think
it's
I
think
it's
important
to
like
for
us
to
agree
on
critic.
What
criticality
is
and
and
kind
of
create
the
list
based
on
that
in
a
vacuum
like
if
somebody
wants
to
you
know,
help
projects
that
are
under
like
that
are
critical,
but
also
underfunded.
That's
kind
of
like
a
join
or
you
know,
a
filter
on
our
list
right
right.
G
C
Let
me
let
me
let
me
throw
let
me
throw
one
out
there.
What
do
you
think
about
gpg
because
that's
a
that's
a
kind
of
a
weird
one,
because
that's
one
where
you
really
only
have
one
guy,
that's
like
the
main
guy,
but
that's
also
because
that's
the
way
he
likes
it.
It's
not
because
of
the
fact
that
it's
not
that
he
hasn't
had
offers
from
companies
and
even
Microsoft,
offering
to
help
and
step
in
I.
G
C
Let
me
let
me
also
say
this
because
this
has
also
come
up,
because
so
this
goes
to
what
we
said
before
Amir
about
how
we
can't
use
these
metrics
as
like
a
defining
factor
of
whether
or
not
something
is
going
to
be
merged
in
because
one
of
my
concerns,
like
gpg,
you're
going
to
have
a
very
small
amount
of
contributors,
but
it's
it
is
critical,
I
mean
I.
Don't
think
anybody
would
argue
it
being
critical,
it's
just
on
paper.
It
might
not
look
that
way.
Laughs.
A
Yeah
yeah,
even
if
on
paper
it
might
not
seem
it
I,
don't
see
why
it
can't
be
on
our
set
of
critical
of
critical
projects
right
like
as
long
as
I
mean
I
think
as
long
as
there's
at
least
one.
You
know,
justification
or
reasoning.
You
know
just
to
show
that
there
is
some
due
diligence
happening.
You
know
we're
not
just
throwing
a
bunch
of
projects
out
I.
Think
that's
going
to
be
very
important
that
we
have.
You
know.
At
least
you
know.
A
Guess
I
don't
have
anything
wrong
with
being
methodic.
You
know.
I
definitely
want
to
do
that,
but
I
think
there
is
just
a
there's,
a
certain
threshold
that
we're
that
we're
that
we're
reaching
where,
like
anything
above
this
threshold,
we
can
call
these
projects
secure,
because
you
know
they're
everywhere.
You
know,
even
if
let's
say
Intel
doesn't
use
it
as
a
critical
part
of
their
Tech
stack.
You
know
other
organizations
or
the
internet
as
a
whole
or,
like
I,
just
think
we're
we're
like
we're.
C
F
Sorry
and
then
maybe
some
product
context
around
on
this,
but
I'm
also
wondering
what
the
process
might
be
for
a
sort
of
manual
submission
or
drawing
a
wider
net
as
to
why
something
might
be
critical
like
if
you
ask
somebody
in
a
certain
industry
or
in
a
different
company.
We
talk
about
Intel
here,
but
if
you
go
to
another
one,
they
say:
okay,
that
one
is
critical
because
and
then
you
find
another,
you
know
from
another
corner
of
the
internet.
You
say
that
this
one
is
critical,
because
do
we
have
a
process
for
that?
F
C
I
think
when
you
do
the
pr
you
could
add
it
as
a
comment
that
was
at
least
what
I
was
envisioning,
but
basically
what
I
had
envisioned
is
you're
gonna,
just
add
it
to
some
sort
of
list,
we'll
run
the
metrics
tool
and
then
that
Metric
school
will
just
come
back
and
add
all
the
metrics
we
requested
as
a
comment
to
your
PR.
That
basically
says
this
is
what
you
know.
This
is
what
it
is
and
then
I
think
from
there.
C
F
E
C
Would
you
feel
like
Amir
if
we
so,
in
other
words,
we'll
do
the
the
tables
and
more
or
we'll
do
the
lists
and
markdown?
But
what
about?
If
we
made
a
GitHub
action
that
every
time
the
markdown
is
updated,
we
make
like
a
CSV
document
and
upload
that
to
releases
because
I'm
doing
some
of
that
stuff
with
PDF
currently
foreign.
C
The
it
would
compile
the
CSV
every
single
time
and
basically
just
make
a
new
release
of
it.
So
there
would
always
be
a
release
of
the
criticality
score
list
par,
say
in
CSV
format,
and
we
could
also
do
PDF.
We
could
distribute
it
in
a
number
of
different
ways,
but
essentially
the
redistributable
list
would
be
uploaded
to
GitHub
yeah
Json
as
well.
C
B
G
G
C
I
think
that
we
could
probably
keep
a
list
and
we
may
might
be
able
to
make
I
know
it's
it.
This
is
probably
like
a
a
bigger
feature,
but
I
mean
we
do
have
we've
made
Bots
before
we
can
make.
We
could
probably
make
a
bot
that
has
like
Hey
we've
already
analyzed
these
packages.
If
any
commit
comes
in
with
this
package,
just
close
it
right,
yeah
and
as
far
as
the
voting,
what
we
have,
what
we
thought
about.
What
we
would
like
to
use
is
GitHub.
C
Cool
yeah,
but
I
was
gonna
say
we
did.
We
did
talk
about
that
and
the
downside
to
that,
because
it
could
be
used
as
a
voting
system.
The
only
problem
is
that
we
would
have
to
basically
add
all
of
the
people
that
we
wanted
to
vote
in
the
repo
beforehand,
because,
basically,
you
cannot
vote
unless
you've
been
added
to
the
repo.
G
Yeah
I
I
think
we
would
don't
need
to
worry
about
figuring
out
how
to
do
a
vote
like
a
realizing
software,
so
we'll
be
doing
like
verbal
consensus
and
stuff,
because
you
know
we
need
to
discuss
the
reasoning
that
we're.
You
know
that
we're
choosing
it
is
critical
or
not
and
see
what
other
people
say
in
this
group.
I.
A
Yeah
that
that's
kind
of
what
we
did
in
our
first
iteration
too.
So
essentially
there
was
like
there
was
like
a
I
guess.
You
could
call
it
like
a
full
list.
So
it
was
like
of
everything
that
people
through
through
recommended
or
or
suggested
or
added
or
or
what
have
you
and
then
we
would
basically
just
go
through
them
as
a
work
group
and
you
know,
discuss
and
approve
and
and
then
it
would
be
added
to
then
like
the
essentially
the
final
set.
A
Yeah
I
think
that
would
be
great
yeah
I.
Think
if
you
used
any
or
even
all
of
the
the
stuff
that
we
came
up
with
I
I
feel
like
that's
a
good
at
least
a
good
first
step,
because
you
know
we
did
get
a
good
amount
of
recommendations
from
you
know:
Community
editions,
meaning
you
know,
projects
that
that
folks
recommended
or
that
they
responded
to.
A
We
created,
like
a
very
simple
Google
form
like
a
survey
that
fed
into
that
was
kind
of
like
our
first
stab
at
this
was
like
you
know,
whatever
you
respond
in
that
Google
form
feeds
into
this.
You
know
into
this
feed
that
we
would
then
you
know,
review
and
whatnot,
but
I'd,
say
yeah.
They
mean
these
hundred
projects.
I
mean
are
a
good
starting
point.
I
would
say.
B
A
It
looks
like
our
next
meeting
and
is
in
fact,
in
two
weeks
on
the
first
of
December
at
the
one
of
the
slightly
altered
times
so
I
have
it
and
on
at
2
p.m.
My
time
yeah
so
I
think
that's
one
of
the
new
APAC
friendly
meeting
times,
plus
the
that
weird
time
change
thing
that
Jeff
was
telling
us
about.
D
A
C
A
C
A
A
A
Is
going
to
go
a
long
way,
ideally,
and
you
know
just
having
a
some
kind
of
curated
set
of
Open
Source
projects,
saying
like
I
kind
of
think
of
it
almost
as
like
a
spotlight,
so
we're
helping,
you
know
folks
say
like
hey,
you
should
focus
on
these
projects
or
think
about
these
projects
more.
You
know.
H
A
F
A
F
A
A
F
It
would
be
great
to
have
a
single
spot
like
a
small
snippet
somewhere
in
the
repo
or
something
to
that
you
could
send
out
to
folks
and
say:
hey,
did
this
group?
Do
you
have
any
critical
projects
on
your
on
your
thing,
so
they
get
they
sort
of
get
it
into
the
glance
in
the
midst
of
their
busy.
You
know
their
General
busyness
and
they
can
say
yes,
I
really
care
about
this
and
yeah.
Oh
here's.
What
I
would
do
next,
so
we
can
just
pull
folks
in
various
communities,
organizations
Etc
I.
H
A
G
I
so
I
think
what
happened?
Is
it's
open
to
the
anybody
that
joined
the
working
group,
which
is
a
Google
Group
which
is
free
for
anyone
to
join
and
somebody
joined
and
made
some
some
edits?
I,
don't
know!
What's
going
on
there
we
can
restore.
It
looks
like
back
in
July,
it's
like,
oh
well,
there's
a
Michael
scadetta
one
in
October.
We
can
like
restore
an
old
version.
G
E
A
F
A
G
A
F
H
C
C
C
The
repos
I
have
also
gone
into
the
repos
and
like
corrected
their
markdown
most
of
it's
Auto
formattable,
there's
just
a
couple
of
things
that
people
forget
to
add
tags
and
stuff
like
that
that
throws
it
off,
but
other
than
that.
Basically,
the
main
reason
is
that
way.
If
people
commit
something
to
the
repo
it'll
pop
off
and
it'll,
tell
you
hey
this
isn't
supposed
to
be
like
this,
because
it
could
break
markdown
readers
and
stuff
so.
C
Well
sounds
good,
okay,
so
I'll
I'll
I'll
make
a
PR
and
yeah
later
on.
We
can
email
operations
or
I
can
show
you
guys
how
to
do
it
because
I'll
add
one
less
repo
I
have
to
deal
with
it,
but
because
sometimes
certain
groups
have
certain
things.
So
we
can
disable
rules
right
now.
I
have
all
rules
on,
but
we
can
turn
any
rule
off.
So
there's
things
like
like
one
that
I
commonly
turn
off
is
that
they
want
you
to
like
keep
everything
in
80
80
characters
per
line.
C
C
D
A
C
B
H
H
B
B
E
D
H
H
B
H
B
B
B
D
D
B
B
H
B
H
H
H
H
H
H
H
H
H
H
H
H
B
B
E
E
B
D
H
I
B
C
Hours,
7.5
percent,
according
to
the
recent
data
essential
report,
restaurants,
that
were
once
open
until
10
and
11
are
now
open
until
11
to
9.,
Washington,
DC
and
Vermont
and
Maine
top
the
top
of
the
list
of
states
or
restaurants.
Having
a
restaurant
hours
have
to
find
the
most
Alaska
was
the
only
state
that
saw
an
increase
in
restaurant.
C
D
B
B
B
B
B
E
H
I
H
H
I
E
Much
of
a
rocks
takes
this
folder
structure
and
creates
a
smart
data
structure,
injecting
scoped
environments
into
your
nested
component,
giving
you
a
really
smart
code
base
converted
into
the
smart
data
structure.
Adding
simplification
is
how
you
organize
your
file
and
any
file
and
folder
extension
can
be
enhanced
to
explain
your
functions
which
aren't
available
custom
functions.
They
wrap
themselves
around
remodels
and
the
owner,
then
both
on
modules,
with
specific
extension,
for
example,
I-
want
to
make
this
component
a
connected
Redux
component.
E
Just
by
adding
in
that
first
form
it
will
be
in
part
by
an
extended
function
as
we
find
in
a
global
configuration
in
this
particular
extension.
We
call
another
files
we
can
capture,
but
I
won't
have
to
program
aquately
connected,
and
this
is
my
idea
we'll
call
in
the
background-
that's
automatically
fastenable.
So
how
can
I
extend
this
one
for
the
eight
record
stage?
E
As
you
can
see,
the
extension
builds
a
function
based
on
specifically
linked
bars
within
the
folder,
which
builds
the
request
by
calling
the
agent
function
and
based
on
the
response,
we'll
see
the
success,
which
means
I,
don't
have
to
regard
the
request.
Every
time
it's
very
easy
for
the
junior
does
to
work
with
I
extend
the
agent
through
my
get
extension,
which
means
the
file
is
reduced
to
Simply
Json
and
the
extension
turns
that
into
an
agent
that
makes
a
request
and
let's
turn
success
into
a
Redux
reducer.
So
whatever
state.