kubernetes
/
community
mirror of https://github.com/kubernetes/community.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

CoCC: describe more the info clarifying process 

As CoCC collects information on an incident report it is important
that folks understand not just that this is done confidentially,
but also a little more about how it is done, eg: in which forums
and by which people.

Signed-off-by: Tim Pepper <tpepper@vmware.com>
This commit is contained in:
Tim Pepper 2021-05-20 15:51:42 -07:00
parent 17d645fcb8
commit f9cb1e6436
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
committee-code-of-conduct/incident-process.md
View File

@ -99,6 +99,8 @@ It is our intention to put as little emotional labor on those who have been harm
In all instances these clarifying discussions are confidential. In all instances these clarifying discussions are confidential.
Clarifying discussions typically take the form of email, Slack DM, or Zoom meeting 1:1 between a member of the Code of Conduct Committee selected during our triaging of an incident report and the individual from whom clarification is sought. The Code of Conduct Committee member will explicitly identify themselves and indicate they are engaging in conversation as a representative of the Code of Conduct Committee. If the individual prefers we will endeavor to make the meeting/conversation not 1:1, but rather also include an observer/scribe agreed by both parties and still with all discussion being confidential.
## Incident response workflow ## Incident response workflow
### Reconvening the Committee ### Reconvening the Committee
@ -130,4 +132,4 @@ When we have decided on a course of action, we do the following:
- We clearly communicate our decision to those who need to hear it, without violating the confidentiality of those who requested it during an investigative process (if one was undertaken). - We clearly communicate our decision to those who need to hear it, without violating the confidentiality of those who requested it during an investigative process (if one was undertaken).
- If and only if it is needed, we work with other leadership bodies (e.g., Steering Committee and the Linux Foundation) - If and only if it is needed, we work with other leadership bodies (e.g., Steering Committee and the Linux Foundation)
- This may be necessary if the incident extends to other communities or event spaces, particularly if we feel there is elevated risk of harm to members of those communities - This may be necessary if the incident extends to other communities or event spaces, particularly if we feel there is elevated risk of harm to members of those communities
- In rare cases, we might find it necessary to issue a public statement, either jointly or separately - In rare cases, we might find it necessary to issue a public statement, either jointly or separately