| Name | affiliation | username |
|---|---|---|
| Rick Wagner | UCSD | @rpwagner |
| A. T. Darian | QuantStack | @afshin |
| Sritej Attaluri | Bloomberg | @attaluris |
| Piyush Jain | AWS | @3coins |
| Rollin Thomas | NERSC | @rcthomas |
| Joe Lucas | NVIDIA | @josephtlucas |
- EC and SSC meeting this Friday
- Conversation with TrustedCI / Workshop in October
- Rollin and Rick will talk to TrustedCI about scope, logistics, etc
- There may be good reasons for Jupyter community members to attend TrustedCI summit generally
- Software supply chain affects everyone
- Security affects everyone
- Hello Joe Lucas
- A JupyterLab extension to evaluate the security of your Jupyter environment
- https://github.com/JosephTLucas/jupysec
- Bug bounty program questions for discussion
- jupyterlab, jupyterlab-server and jupyter-server proposed so far w/contacts for each
- Jason G. proposed to use the Github CVE process for reporting bugs. Is this the process that should be followed by the Intigriti Team/Bug reporters?
- Is any one familiar with Intigriti?
- Should we have security.jupyter.org (or sec.jupyter.org)?
- Hub is moving forward on hub.jupyter.org as precedent
- jupyterhub/team-compass#444