V8 Committer status

124 views
Skip to first unread message

snek

unread,
Feb 4, 2025, 3:52:53 AM2/4/25
to v8-dev
My commiter status seems to have been revoked some time in the last 4 days, and it has been far less than a year since my last gerrit activity. Why was it revoked? Could this be reinstated?

Jakob Kummerow

unread,
Feb 4, 2025, 4:46:17 AM2/4/25
to v8-...@googlegroups.com
I've forwarded this question internally, will update when I hear back.

Jakob Kummerow

unread,
Feb 5, 2025, 4:42:52 AM2/5/25
to v8-...@googlegroups.com
You need to set up a Security Key to secure your account. You should have received at least two reminder emails about this last year (Nov-Dec). Once you have set up a Security Key, your committer status can be reinstated.

FWIW, I see public documentation about this requirement on https://www.chromium.org/getting-involved/become-a-committer/#nomination-process. Since V8 is part of the Chromium ecosystem, this policy applies to us as well. We should probably put a note on https://v8.dev/docs/become-committer to reflect that.

snek

unread,
Feb 5, 2025, 8:34:08 AM2/5/25
to v8-dev
Thanks for checking. I've had a security key on my account since November though.https://gc.gy/eb871c1d-b16f-4aa8-be0a-f0d3807232da.png

Jakob Kummerow

unread,
Feb 5, 2025, 8:38:30 AM2/5/25
to v8-...@googlegroups.com
Ah, that might explain it: "Passkeys" are not "Security Keys". The latter is a device like this or this.

snek

unread,
Feb 5, 2025, 8:54:09 AM2/5/25
to v8-dev
What are you looking for exactly? Do you need the device to have attestation keys from yubico/titan specifically?

snek

unread,
Feb 5, 2025, 9:05:32 AM2/5/25
to v8-dev
Nevermind I see there are now two buttons for creating a "security key" and a "passkey", i've deleted and re-added my authenticator as a passkey. Really a shame that the webauthn spec was fucked up this badly but whatever, hopefully I fulfill the requirements now.

Jakob Kummerow

unread,
Feb 5, 2025, 4:32:11 PM2/5/25
to v8-...@googlegroups.com
I'm not an expert on any of this, I'm just trying to help you. I don't think the manufacturer of the device matters, those were just examples to illustrate. I believe it needs to be "FIDO2 compliant", and you need to click the "+ Use a security key" button in your account settings. I'm not sure whether a phone is enough; personally I'm using dedicated hardware security keys.

snek

unread,
Feb 5, 2025, 5:15:28 PM2/5/25
to v8-dev
Yes I've done this now. Thanks for your guidance, I appreciate it.

Jakob Kummerow

unread,
Feb 6, 2025, 5:34:17 AM2/6/25
to v8-...@googlegroups.com
To close out this thread: I've received confirmation from the admin team that the account is now configured correctly, and committer status has been restored.

Reply all
Reply to author
Forward
0 new messages