Re: [Ietf-and-github] Mail regarding draft-ietf-git-github-wg-configuration, section 3.1 (Contributions)
"Martin Thomson" <mt@lowentropy.net> Tue, 05 March 2019 17:37 UTC
Return-Path: <mt@lowentropy.net>
X-Original-To: ietf-and-github@ietfa.amsl.com
Delivered-To: ietf-and-github@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AAFD413103C for <ietf-and-github@ietfa.amsl.com>; Tue, 5 Mar 2019 09:37:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=j9u6oYL7; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=GzvusIDV
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fcxDw1rfMuOe for <ietf-and-github@ietfa.amsl.com>; Tue, 5 Mar 2019 09:37:34 -0800 (PST)
Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6D46A1310FC for <ietf-and-github@ietf.org>; Tue, 5 Mar 2019 09:37:34 -0800 (PST)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 1A80021AC2; Tue, 5 Mar 2019 12:37:33 -0500 (EST)
Received: from imap2 ([10.202.2.52]) by compute1.internal (MEProxy); Tue, 05 Mar 2019 12:37:33 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=message-id:in-reply-to:references:date:from:to:cc:subject :content-type:content-transfer-encoding; s=fm1; bh=qTmRj20+iPcdf TGNl6qp2nNc75N0NlGz6aEDkxYQuMI=; b=j9u6oYL7PBaMiSBC1Mce8jk7n3OQO o73dyJFph82ccjctVIs3Z7PBqe+6Cb6JV4RZL52rmxNiQM7nAlN7peRwFsSrh16R FHFTIgTJtbLXibR3k2HcWCUstcGDylAs6JAWR0G5kbTc4+gZ4P5qamWZjZ4+P0Mv ib2UqUTKiIp2reXGmcrjJZYb+FWCK3D25ruEkvGrWdkxlkCWdRpfYFf0ctxgKQGi rFb6OOtMXvXn4wDmZJWHCjVyk4ewD77MgRYLXSheKB55f3E9WGuc1Vhf+e0V413j MVugdRYzO6m6xXfOuJl1aEYnEJl4LWotDDReaLmZtbpwY/5t0tDe2PEVQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:references:subject:to :x-me-proxy:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s= fm2; bh=qTmRj20+iPcdfTGNl6qp2nNc75N0NlGz6aEDkxYQuMI=; b=GzvusIDV 8FcU3ajSmwZrNduSuB2fLdwapTrwsCz42AG1iR471kTB3CZOFz/K+P9n2sSTQtNu dSAygo9UyKhykDLmkmc7eFpHf8jbhqmAppqW79F1nwYmm/wZUEw+ordKx/7rtE0j EDux+Bt5fIcNl6iphwGVLOCm/dHGCyttJCNnbXlkmn76D9IniLa37MxSzBPL3JHL LrrLrfXR66b98LLDc7Wp2dPnSdeeEtHhReT4raO8Dy/12Wg9eKIA9kZKKvQeD+r9 5uJ45tN6qbtoAjWHXWaHuVFW4tKDvIz3o2Y3QcP5AKCcQLBwx/hFpax4sWWlo8v5 lQMSb5Ji+4HT1Q==
X-ME-Sender: <xms:27N-XBwJ9DSJItueclmDnzcmSZkHfKfEZNk_93QCrVWJhvJ6Fc0rVw>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedutddrfeefgddutdegucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepofgfkfgjfhffhffvufgtgfesthhqredtreerjeenucfhrhhomhepfdforghr thhinhcuvfhhohhmshhonhdfuceomhhtsehlohifvghnthhrohhphidrnhgvtheqnecuff homhgrihhnpehgihhthhhusgdrtghomhdpihgvthhfrdhorhhgpdgtlhgrqdgrshhsihhs thgrnhhtrdhiohdpsghiuggulhgvrdhlrgifnecurfgrrhgrmhepmhgrihhlfhhrohhmpe hmtheslhhofigvnhhtrhhophihrdhnvghtnecuvehluhhsthgvrhfuihiivgeptd
X-ME-Proxy: <xmx:3LN-XDrTCEKlQIPRUwW22tQnDgLlmxMVx_6bIgDuyiLVRhq1-teuXA> <xmx:3LN-XF5mZOTnXjRhe44OEIrjustQ-d37fbkePNfwCd7WHO_GMhxqbQ> <xmx:3LN-XOBsytzDnrNayeeMn7Z__RU0lUoxh3TawfAog3ExWN8vflseNA> <xmx:3bN-XEYWfsr4JQZob7heZ6OKqKKj4B9_Xl4Ajr0prxz4BvTHp4fuzg>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id DDD7F7C1EB; Tue, 5 Mar 2019 12:37:31 -0500 (EST)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.1.5-925-g644bf8c-fmstable-20190228v5
X-Me-Personality: 92534000
Message-Id: <9ea6f783-22aa-48bb-9cc8-bb449daccc76@www.fastmail.com>
In-Reply-To: <F43D9939-7935-4C8D-9C39-E069624B48C2@biddle.law>
References: <C29868B2-6489-4D3C-A57F-4A6A52CA72B3@contoso.com> <c99214a2-40ee-41dd-a4dc-e361d56771cd@www.fastmail.com> <4D3661B2-5083-48F5-8D52-079E90ED9C0D@stewe.org> <F43D9939-7935-4C8D-9C39-E069624B48C2@biddle.law>
Date: Tue, 05 Mar 2019 12:37:31 -0500
From: Martin Thomson <mt@lowentropy.net>
To: Brad Biddle <brad@biddle.law>, Stephan Wenger <stewe@stewe.org>
Cc: ietf-and-github@ietf.org
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-and-github/4HJa2jbyuAcJwXeCS4qDIfy4Kvk>
Subject: Re: [Ietf-and-github] Mail regarding draft-ietf-git-github-wg-configuration, section 3.1 (Contributions)
X-BeenThere: ietf-and-github@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of using GitHub in IETF activities, particularly for Working Groups" <ietf-and-github.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-and-github>, <mailto:ietf-and-github-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-and-github/>
List-Post: <mailto:ietf-and-github@ietf.org>
List-Help: <mailto:ietf-and-github-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-and-github>, <mailto:ietf-and-github-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Mar 2019 17:37:38 -0000
Hi Brad, That is certainly an option. My experience with the W3C process, which uses a similar setup, is that it does add friction. My personal preference is not to add that. Though they are fairly simple and lightweight, they tend to trigger processes in legal departments that are less lightweight, so it is not entirely free from costs. --Martin On Tue, Mar 5, 2019, at 17:12, Brad Biddle wrote: > All — an idea, offered for discussion: what about using the > CLA-assistant tool to ensure that participants affirmatively acknowledge > the current CONTRIBUTING.MD text (or a similar variation on the Note > Well text)? I.e., the tool could present this text and require an > express acknowledgement. > > See: > https://github.com/cla-assistant/cla-assistant > https://cla-assistant.io/ > > Several groups I work with use this tool in connection with their GitHub > repositories, and I gather it’s pretty seamless. From a legal > perspective it would offer a stronger argument that participants have in > fact agreed to the relevant IETF terms than the current model. > > —Brad > > Brad Biddle | brad@biddle.law | +1.503.502.1259 (mobile) | > http://biddle.law > > On 4 Mar 2019, at 18:57, Stephan Wenger wrote: > > > Hi Martin, > > Thanks for your comments. Please see inline. > > S. > > > > On 3/4/19, 18:42, "Ietf-and-github on behalf of Martin Thomson" > > <ietf-and-github-bounces@ietf.org on behalf of mt@lowentropy.net> > > wrote: > > > > Hi Stephan, > > > > I encourage you to attempt to contribute to a draft repository on > > GitHub. The BCP79 notice is perhaps not as prominent as you might > > like, but there is a fairly clear path to it. > > > > In case you can't find an example, here's a link where you can > > create an issue for the draft I just posted: > > https://github.com/martinthomson/hx-uri/issues/new > > > > I tend to think that is adequate. If you disagree, we can discuss > > the pros and cons of searching for something more robust. > > > > StW: Yes, this seems adequate. However, I thought the subject draft > > is guidance for WGs setting up their own GitHub projects. Nowhere it > > is mandated that they use the IETF "tree" or whatever that thing may > > be called. In theory, I could set up my own GitHub repository under > > my own name, not using your excellent infrastructure, no Note Well, no > > nothing, and invite the working group to contribute. Then all kinds > > of random people (including potentially malicious ones) could > > theoretically make Contributions in the BCP79 sense arguably without > > being bound by BCP79. So I guess there should be a word of warning in > > this draft--using the Martin Thomson-style infrastructure and the IETF > > tree (or whatever that thing is called), or otherwise be very careful > > to implement your own mechanisms to ensure that all Contributions are > > made in accordance with BCP79 and the Note Well. > > > > Section 3.1 of the draft we're discussing here (of the long name) > > includes provisions designed to accomplish the goal you describe. And > > yes, the template code I maintain emplaces a default notice. I > > understand that reading the code is difficult (I'll be the first to > > acknowledge how arcane this stuff is), but it is described in language > > I hope you can understand here: > > https://github.com/martinthomson/i-d-template/blob/master/doc/FEATURES.md#setup-a-repository > > > > StW: yes, this is good, and so is your whole infrastructure. As > > pointed out above, we are not mandating its use, though... > > > > Regarding the trust notice or the content of the contributing > > notice, that's not something I'd care to comment on. You can see what > > I have, which is - in part - something recommended by the IETF Trust > > and IESG, and in part just text that I believe to be helpful: > > https://github.com/martinthomson/i-d-template/blob/master/template/CONTRIBUTING.md > > > > StW: Your "Contributing" file is just fine with me. Personally, I > > consider the code component part of it a rather minor aspect for IETF > > work, and I think if you look at litigation statistics of IETF related > > subject matter, you would likely agree. That's why I asked why that > > aspect is prominently mentioned, while no particular attention is > > drawn to BCP79 (which is where the music plays). I'll wait a bit more > > for others to comment. > > > > Cheers, > > Martin > > > > On Tue, Mar 5, 2019, at 04:16, Stephan Wenger wrote: > > > > > > Hi, > > > > > > > > > One concern I have when I see people, in an IETF context, work > > on docs > > > in toolchains other than IETF mailing lists and posting of I-Ds > > on the > > > IETF infrastructure is that I think we should ensure that BCP79 > > sticks. > > > BCP79 is the IETF’s patent policy. A scenario to avoid is that > > people > > > insert patented technologies without being bound by the patent > > policy. > > > To avoid that, there ought to be a mechanism that a) > > unambiguously > > > makes it clear that any written contribution using GitHib tools > > > constitute Contributions in the BCP79 sense, and b) ensures that > > a user > > > that makes a written contribution using GitHub tools would have > > seen > > > the Note Well at least once. > > > > > > > > > I believe that most GitHub-using working groups in the IETF have > > > assured that by including something like a click-through of the > > Note > > > Well when accessing the GitHub repository (writing to it in > > whatever > > > form). That, I think is sufficient, but perhaps should be > > documented in > > > this draft. I don’t know enough about the mechanics to propose > > text > > > myself. Lots of that may already be present in Martin’s > > template, but > > > that template is hard to read/understand for someone like me, > > who’s not > > > writing software or webpages. > > > > > > > > > One thing I don’t understand is why the Trust outbound license > > needs to > > > be present in the repository, as suggested in section 3.1. > > Especially > > > for a WG that uses GitHub only for maintaining documents and not > > > software. Can someone explain or point me to an explanation? > > > > > > > > > Thanks, > > > > > > Stephan > > > > > > > > > > > > > > > > > > > > > _______________________________________________ > > > Ietf-and-github mailing list > > > Ietf-and-github@ietf.org > > > https://www.ietf.org/mailman/listinfo/ietf-and-github > > > > > > > _______________________________________________ > > Ietf-and-github mailing list > > Ietf-and-github@ietf.org > > https://www.ietf.org/mailman/listinfo/ietf-and-github > > > > > > _______________________________________________ > > Ietf-and-github mailing list > > Ietf-and-github@ietf.org > > https://www.ietf.org/mailman/listinfo/ietf-and-github >
- [Ietf-and-github] Mail regarding draft-ietf-git-g… Stephan Wenger
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Martin Thomson
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Stephan Wenger
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Brad Biddle
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Martin Thomson
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Martin Thomson
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Stephan Wenger
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Stephan Wenger
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Salz, Rich
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Martin Thomson
- Re: [Ietf-and-github] Mail regarding draft-ietf-g… Christopher Wood