This is an attempt to improve the collaboration of the security teams of various distributions.
Basically the XZ incident. The challenges that threats like these raise are huge and no single team will be able to tackle all of the necessary tasks.
We all work on a common/similar code base and therefor it seems logical to try to identify opportunities for cooperation.
Possible topics include
- Share information on how we work
- Identify areas of cooperation
- Avoid duplicate work
Topics for the next meeting: https://github.com/jsegitz/distro-security-meetup/blob/main/minutes/next.md
- Collection of topics SUSE wants to work on: https://en.opensuse.org/XZ_backdoor_brainstorming