Agenda

Time: (Weekly) Tuesday at 13:30 PM PDT / 16:30 PM EDT / 21:30 PM UTC.
Place: Mozilla HQ, 3A-All Your Base (3rd Floor)
Phone (US/Intl): 650 903 0800 x92 Conf: 95316#
Phone (Toronto): 416 848 3114 x92 Conf: 95316#
Phone (US): 800 707 2533 (pin 369) Conf: 95316#

[curtisk] Third party reviews
- requested new questions
  - Who is the primary point of contact for security issues?
  - What means of secure communications are available to discuss or report sensitive security issues?
- process updates - what can we do better?
[yboily] Contributor communications
dchan PTO thurs, in NYC next Friday
Goals - Please keep status up to date - https://docs.google.com/a/mozilla.com/spreadsheet/ccc?key=0AmLct3lOMM6ZdEI4SlE0eGRWdkN5bXBpbV8wcjNzNUE
Metrics
- https://security-review-statistics.vcap.mozillalabs.com/
- Review Security Radar Page - https://wiki.mozilla.org/Security/Radar
  - data updated to show this quarter

Upcoming Speaking Engagements

Raymond Forbes : Feb 27 - March 2 : Nullcon : Bug Bounty Programs
David Chan: Feb 22 : taking to a small group of engineers about security testing at Animoto

Please add your name to the update so we know who to follow up with

[decoder] LLVM: Working on msan and ubsan support, compiling issues resolved
[decoder] JS: Upcoming fuzzing for OdinMonkey (https://bugzilla.mozilla.org/show_bug.cgi?id=840284)
[decoder] mfbt is getting a unified interface for ASan/Valgrind annotations ( https://bugzilla.mozilla.org/show_bug.cgi?id=838557 ) to improve usage of these on our codebase