John Skiles Skinner

icon company 18F icon location Oakland, California

Results 9 issues of John Skiles Skinner

missing CSS on avatar image

3 comment

### Steps to reproduce the problem 1. Upgraded v3.1.3 -> v3.4.0 -> v3.4.1 -> v3.4.5 per each version's upgrade notes 2. Visit a profile page such as https://carhenge.club/@skiles 3. Find...

bug

Survey Qubes upstream changes

1 comment

Allocate some time to monitoring forthcoming changes to Qubes - Report out on things that might be relevant to us - Give new features a spin when relevant - Permissible...

Security audit firm selection

1 comment

## Select a security audit firm Proposed steps: 1. Baseilne: [selections from OTF](https://docs.google.com/document/d/19psLcJAq6A5FJP8S8254hN9jTAfjBhHDuoxBick9GTY/edit?tab=t.0) 2. Add [more candidates](https://docs.google.com/document/d/19psLcJAq6A5FJP8S8254hN9jTAfjBhHDuoxBick9GTY/edit?tab=t.r7pc3pwwcwe8#heading=h.bzbkuut08clq) 3. Downselect 4. Interview Sub-tasks: - [Read audit reports #2754](https://github.com/freedomofpress/securedrop-client/issues/2754) - [Survey auditor...

Add Workstation version number to Latest Release

### Description The LATEST RELEASE section of the website reports the current version of the SD Server. It currently looks like this: To this we would like to add the...

Survey auditor tech experience overlap

Form some idea of the technical experience of each [candidate audit firm](https://docs.google.com/document/d/19psLcJAq6A5FJP8S8254hN9jTAfjBhHDuoxBick9GTY/edit?tab=t.r7pc3pwwcwe8#heading=h.bzbkuut08clq) from report and blog post titles. List these experiences, particularly where they overlap with our needs. No need...

Onboard Conor

Onboard @conorsch to get up to speed on changes, particularly to the Workstation and Client. Not the full FPF onboarding experience because Conor doesn't need that. - @cfm and @vickiniu...

Dependency mapping

Visualize dependencies of major SD workstreams. 📊 ~~[Gantt chart in Figma](https://www.figma.com/design/GAlDFvJGU6XurtZ9xE8qxc/Timeline--rewrites-and-their-depedencies)~~ [New Gantt chart with explicit dependency arrows](https://www.figma.com/board/eMGZNAlXO5tJeJF38bZa98/SecureDrop-re-write-Gantt-chart?node-id=5-2160&t=cxFZulLsDXEvHu9N-0) Purpose: _De-risking_ dependency relationships: - Identity where we lack information - Show...

Contact auditors

Contact each [candidate audit firm](https://docs.google.com/document/d/19psLcJAq6A5FJP8S8254hN9jTAfjBhHDuoxBick9GTY/edit?tab=t.r7pc3pwwcwe8#heading=h.bzbkuut08clq) and ask about: * appetite for the type of audit we need * tech stack overlap * timeframe * maybe budget.

Read audit reports

Read 1 public audit report per [candidate firm](https://docs.google.com/document/d/19psLcJAq6A5FJP8S8254hN9jTAfjBhHDuoxBick9GTY/edit?tab=t.r7pc3pwwcwe8#heading=h.bzbkuut08clq) from audits similar to the one we are planning. Purpose: Down-selecting the list of candidates, getting rid of the obviously bad ones....