[trustable-software] Git auditing tool
Chaiken, Alison
alison at she-devel.com
Mon Dec 19 00:42:18 UTC 2016
trustable at panic.fluff.org wrote:
> What an interesting starting place.
> At the heart of the delivery of trustable systems is the notion of
> Segregation of Duties
>
> https://en.wikipedia.org/wiki/Separation_of_duties
The easiest ways to achieve these goals would be to make use of existing
systems for code review like Github or Gerrit. Both systems are
compatible with git hooks, and both allow for easy discussion about
submitted code. Just adding a rule about who must have signed a commit
before it can merge would go a long way.
-- Alison
---
Alison Chaiken alison at she-devel.com, 650-279-5600
http://{ she-devel.com, exerciseforthereader.org }
"You shouldn't try to optimize things you can't measure." -- Elecia
White,
http://embedded.fm/episodes/170
More information about the trustable-software
mailing list