> On Mar 11, 2020, at 17:11, Jonah Graham <jonah@xxxxxxxxxxxxxxxx> wrote:
>
> Other CLAs don't require public disclosure of email addresses and names (e.g. CNCF, Microsoft, Google)
Although they do not require public disclosure they do require signing. Signing unveils the real name and identity to the companies, doesn't it? They can then map that identify to a GitHub id. Otherwise, it would be the first time I hear of these companies accepting anonymous contributions. AFAIK no one is.
I was thinking of commit messages that look like:
$ git log -1
commit 5556051e7a1de909f206287e601019be2eb75fb6
Author: Marcono1234 <
Marcono1234@xxxxxxxxxxxxxxxxxxxxxxxx>
Date: Sun Mar 1 16:22:16 2020 +0100
Fix Contributing.md formatting
Where Marcono1234 has signed ECA but doesn't want email address and real name published in open fashion.
Personally, I haven't put much thought into this topic, though. My first reaction is: no way. Contributions and open source rely on a level of trust. How would you trust someone entirely anonymous? But then again, I can see a point of data privacy, which is a general problem of Git. Although, this could be mitigated by having the EF be a trusted source, which maps anonymous ids to real identities when needed.
Yes - EF being the trusted source is what I am asking for - EF already provides the mapping, so the only change is being clear on who can access that mapping and using usernames in commit messages.
-Gunnar
--
Gunnar Wagenknecht
gunnar@xxxxxxxxxxxxxxx, http://guw.io/
_______________________________________________
eclipse.org-architecture-council mailing list
eclipse.org-architecture-council@xxxxxxxxxxx
To unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/eclipse.org-architecture-council
