You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
How do we comply with SOX requirements in repos that accept public contributions?
Current list of repos that need SOX oversight: ecommerce, ecommerce-worker, frontend-app-payment, frontend-app-ecommerce, discovery, frontend-app-publisher. PERHAPS edx-platform (but we hope not).
Identify squads that own those repos
Make a list of those squads' engineers
Examine commits in repos to see who would be outside that list
Choose a technique to limit approval to those squads' engineers:
CODEOWNERS with approval setting
Limit write access to the repos
The text was updated successfully, but these errors were encountered:
How do we comply with SOX requirements in repos that accept public contributions?
Current list of repos that need SOX oversight: ecommerce, ecommerce-worker, frontend-app-payment, frontend-app-ecommerce, discovery, frontend-app-publisher. PERHAPS edx-platform (but we hope not).
The text was updated successfully, but these errors were encountered: