On Mon, Mar 2, 2015 at 6:40 AM, Stanislav Malyshev <[email protected]> wrote:
> Hi! > > > he has thougtful ideas, and since most patches related to "security > > issues" I don't think PR is proper. > > Sure, in this case we can have them on bugs and security list. > Repository access is not required to share ideas. BTW, security patches > should be committed with extra care, many of them should be held until > RMs are ready to release anyway. > > > Anyway, he works in security fields with experiences, thus I have no > > objections for his request > > I don't have objections personally, but I think php-src access should > come after the person accumulated certain history of contribution. This > did not happen yet. When it happens, there would be no problem. > > -- > Stas Malyshev > [email protected] > I think it would be reasonable to follow the usual due process which is to wait for a couple of patches before giving out the account (and as Stas mentioned the juicy security patches should be always handled via the bugtracker so that we don't make it public via git before we are otherwiser ready with the release). -- Ferenc Kovács @Tyr43l - http://tyrael.hu
