XMPP Council - 2022-09-23


  1. moparisthebest

    Does chair or editor have an opinion on this? https://mail.jabber.org/pipermail/standards/2022-September/038964.html cc daniel jonas’

  2. jonas’

    I'm with goffi

  3. jonas’

    it's just Experimental

  4. jonas’

    productive implementations *are* explicitly discouraged, so I'd hope that folks are aware that there might be open security questions

  5. jonas’

    if they care at all, given that people also just ignore the security considerations

  6. moparisthebest

    It just seems really security sensitive and I really hate to accept it for even experimental without them

  7. Zash

    Requiring a Security Considerations section seems more important at Stable and on. Also from a procedural standpoint, it's weird to change the thing you're voting on close to the vote.

  8. moparisthebest

    I'd be ok with a policy to require security considerations before submission

  9. moparisthebest

    It's sometimes hard to tack them on afterwards, both spec and implementation wise

  10. moparisthebest

    Not on this one in particular I think, but sometimes