Claudio Wunder
Claudio Wunder
@avivkeller meeting is open or do we need to invite Michele?
There's a Web Infra vault on 1Password.
+1 for Web Infra. We should also require 2fa (Physical) on 1Password which has access to Vercel and Sentry and our GitHub bot accounts.
I think we should have a flexible requirement either have a Passkey or a Yubikey. Passkeys are already more secure and usually tied to Devicesd (iOS Phones, Windows computers, Android...
I think code-based 2FA, SMS-based or anything tied to something that could be compromised without a hardware in-person devioce should be no go. That's why I said Android Phones/iPhones;Windows Computers...
> https://github.com/orgs/nodejs/people?query=two-factor%3Ainsecure will show a list for org owners. The filter two-factor:insecure / two-factor:secure doesn't seem to be working.
@RaisinTen you're aware there's already an issue open on https://github.com/nodejs/nodejs.org/issues/7909, right?
I agree with @jasnell’s -1 on both adding extra markdown documents and the proposed format for showcasing funding. I don't believe this approach will be effective—targeted individual funding from organizations...