Open stephenscapelliti opened 2 years ago
This gets a vote of confidence from a resident security advisor!
Passwords should 💯 be generated by and stored in a secure, purpose-built tool. 1Password is a proven, well-audited choice for this task.
I am voting YES on this proposal.
I think we're going to have the votes to make it happen! Strong yes!
On Mon, Oct 25, 2021 at 3:07 PM semahernandez @.***> wrote:
I am voting YES on this proposal.
— You are receiving this because you were assigned. Reply to this email directly, view it on GitHub https://github.com/ProgressiveCoders/functions/issues/264#issuecomment-951222930, or unsubscribe https://github.com/notifications/unsubscribe-auth/AC3GNKYWSTDEBJENZUK3NULUIWTHRANCNFSM5GPXCZ5Q . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
👍
Description
This is a proposal to purchase a password management account for access and use by ProgCode Operations Staff and other community members in fulfillment of the ProgCode mission.
The password management account under consideration is a 1Password Teams membership account which is being offered to ProgCode with a 50% discount of the annual subscription price for life.
Problem
The ProgCode community relies on many services through accounts maintained by providers, all of which are accessed through logins and passwords. In the earliest days of our community, volunteers created these accounts and volunteered to be responsible for maintaining them for community access. As the community grew, this arrangement posed a potential security risk and risk of lost access, when login information was lost or persons holding the accounts were unavailable.
Benefit
A 1Password Teams account would decentralize control of accounts necessary for ProgCode community operations and enable account access to staff and other community members on an as-needed basis. The 1Password Teams account would secure and preserve the accounts for the benefit of present and future community members.
Expenditure Analysis
This proposed solution would require a minor monthly expenditure ($19.95/month x 50% = $9.98/month).
The requirements of Issues #198 and #236 are applicable, as follows:
Proposals seeking consent for implementation of budget requests and/or change process should not contradict ProgCode core objective and should pass this four-pronged test when considered by operations:
Plan
Decision Making
Consent to implement a standard change per the Change Process
Optional Information
Reference link(s)
Community Discussion History: