Dev Meeting Transcript (March 26, 2021)
[3:15 PM] bless yer heart: Good Morning, Afternoon, Evening all,
Old Business
- How do we incorporate non technical people into the agenda items? Currently utilizing GitHub repo and Discord. Where should we and can we expand to?
- Can someone put together a list of all the major Ravencoin-related websites & github accounts and who owns them or has control?
– What about social media accounts (Discord, Telegram, Reddit, etc) and who owns, controls, moderates them?
- Updates on existing core development work
P001 – Contacting Kudelski again on Monday 22 Mar 21
- Update on #880 – Sweep capability for RVN core
Kent Bull is taking lead
New Business
- Wiki Update progress – Jeroz
- Update to P001 – Tron
- Update to P880 (sweep) – Kent
- Open floor for developer current topics of interest
- Open floor for developer future topics of interest / agenda items
- Spacial AMA in Braveland's Ravencoin Campus
From the community
- Are there any updates for asset exchange? Mango farms?
- Should we "re-introduce" and use SegWit?
- Vincent released an article on Medium pertaining to burn rate.
- Forking test net. – Jeroz
[3:16 PM] bless yer heart: The current suggested meeting agenda. Please add where necessary.
[4:00 PM] Tron: We need to discuss the approval process for existing PRs for core. This used be done by the Medici team. That no longer exists. The rules need to be modified based on what we decide.
[4:00 PM] Vincent: :nerd:
[4:01 PM] Tron: Any volunteers to be approvers. C/C++ strongly recommended.
[4:01 PM] Tron: I will be an approver.
[4:01 PM] Tron: I do not want to be the sole approver.
[4:02 PM] Kent Bull: I volunteer to be an approver as well. I reviewed the P2SH PR and was starting to get the hang of things. Once I'm up to speed on C++ I'll be able to provide high quality reviews.
[4:02 PM] Hans_Schmidt: I can help
[4:03 PM] Kent Bull: This is a good point for me to quickly introduce bless yer heart. He volunteered to be the scrum master for today.
[4:03 PM] Tron: It would be nice to have 4 or 5 besides myself. Note: You cannot approve your own PR.
[4:04 PM] fdov: I can if you want me. But I need to brush up on coding skills. I only do simple, mostly Qt stuff for now. I can also try to help handle some issues in the github, sorting, tagging etc.
[4:04 PM] Kent Bull: Also, I started a new job this week so I've got a few weeks of adjusting to do before I know how I'll be able to work Ravencoin work into my regular workflow.
[4:04 PM] Kent Bull: I'll do what I can as the PRs come in, contribute however I can at the time.
[4:04 PM] bless yer heart: Thanks Kent Bull
[4:04 PM] Tron: The rules will be that it has to pass the tests. Thanks fdov for getting it to build.
[4:05 PM] Vincent: We have 2 people so far (no offense) that say they have rusty skills… do we want this?
[4:05 PM] Kent Bull: You're free to contribute funds to hire other options.
[4:06 PM] bless yer heart: I hope everyone got the chance to read the agenda for today, can we start off with old business?
- How do we incorporate non technical people into the agenda items? Currently utilizing GitHub repo and Discord. Where should we and can we expand to?
[4:06 PM] Tron: Anything that touches consensus will require a code audit. What we're primarily checking for is to make sure it works (has unit and functional tests), that the test pass, and that nothing has been added that steals keys.
[4:06 PM] Tron: If it involves consensus, the standards will be much higher.
[4:08 PM] Tron: ———————————-For non-technical people there should probably be new options available in the Ravencoin Campus area.
[4:08 PM] [MASTER] roshii: The code audits need to be discussed a lot more in depth,
[4:08 PM] Kent Bull: fdov did you fix the one breaking unit test?
[4:09 PM] fdov: Kent Bull Tron did, I merged it into my build-pipeline fix, for the build to pass tests.
[4:09 PM] Kent Bull: Ok, cool.
[4:09 PM] Hans_Schmidt: Tron, you are spelling out great rules for the approval process. We should put those in writing and formalize them. I can provide C++ competence as can others. But the process itself is also important.
[4:09 PM] Tron: I fixed it and fdov integrated it.
[4:10 PM] [MASTER] roshii: I can hire one senior C++ person full time to review and approve PRs
[4:10 PM] [MASTER] roshii: The foundation can hire a second person full time
[4:10 PM] [MASTER] roshii: and it will still cost a lot less than the shitty code audits
[4:11 PM] Tron: WhaleStreet will hire a dev too. We need devs to hire. If you are one, or know one, send them my way and I'll make intros.
[4:11 PM] [MASTER] roshii: Foundation is paying for these devs?
[4:12 PM] Tron: Hans_Schmidt I can add the formalized approval process to the repo as soon as we figure it out and have some people approving.
[4:13 PM] Pho3nix Monk3y®: what kind of devs in particular. sorry if I missed it. just joining.
[4:13 PM] [MASTER] roshii: Mainly C++
[4:13 PM] Pho3nix Monk3y®: just C++
[4:13 PM] Hans_Schmidt: There are times when code audits are appropriate. But we definitely should not be spending more money over the long term on audits than on quality coding.
[4:13 PM] Pho3nix Monk3y®: ok
[4:14 PM] Tron: No. The foundation is doing bounties based on donations. There is no guranteed revenue stream or fundraising mechanism. If it became regular enough, the foundation could consider full-time hires.
[4:14 PM] [MASTER] roshii: Ok if I hire a Dev, and WhaleStreet hires a dev, is these two devs approvals enough or we still need security audits?
[4:15 PM] [MASTER] roshii: I will be helping too, and Tron can still looks at code too.
[4:15 PM] [MASTER] roshii: plus all the others
[4:15 PM] Tron: We want security audits for consensus level changes.
[4:15 PM] bless yer heart: It looks like we need help two fold here.
- A list of at least 5 people to approve PR's. C++ required?
- A "process guide" for approving PR's
Can always add it to the agenda for next week to follow up. Gives time during the week to organize a bit.
[4:16 PM] Kent Bull: C++ required. Ravencoin Core is in C++
[4:16 PM] Tron: I want to get fdov changes in right away so everyone that agreed to approve, please take a look.
[4:17 PM] Hans_Schmidt: I don't think we need a hard rule on audits. Mostly unnecessary, but we can judge the risk in complex changes involving consensus,
[4:17 PM] Tron: That doesn't mean we need to make a new release from them, but it is the beginning of having a working build process that branches can created from.
[4:18 PM] fdov: Tron #904 – should we think about the SDK-source?
[4:18 PM] [MASTER] roshii: Who decides on the Security audits details?
[4:19 PM] Nathan Hauk: I'd suggest a contact with a consultancy for consistency. If you get a cheap audit from a great consultancy it'll still be a cheap audit.
[4:19 PM] Tron: Yes, I'd like to switch that to a fork stored in RavenProject, so that it can't be changed by an unknown third-party.
[4:19 PM] Nathan Hauk: Assessments are terribly misunderstood for CC/BC projects
[4:19 PM] [MASTER] roshii: Security audits in their current form are a waste of time and money, it needs to be rethinked
[4:19 PM] fdov: Tron good, I agree.
[4:20 PM] Nathan Hauk: Contract*
[4:20 PM] Tron: I did hear back from Kudelski. Their own people are booked until July, and there's a subcontractor they trust that will do it for $15K under their "paper". I'm leaning back towards ISE. Thoughts?
[4:20 PM] Kent Bull: Is this in reference to the SDK here? https://github.com/shannon1916/MacOSX10.11.sdk.tar.gz
[4:20 PM] Tron: Yes Kent
[4:21 PM] Tron: Probably safe, but pulling in dependencies from the outside leaves an attack vector.
[4:21 PM] Nathan Hauk: Shaun and Ali at ISE are familiar with Raven. ISE would be ok. I was very open about Adrian/Manfred leaving ISE
[4:22 PM] Tron: Thoughts on using ISE Nathan Hauk ?
[4:23 PM] Kent Bull: What again is ISE?
[4:23 PM] Nathan Hauk: I believe your last offer from ISE included a discount. I haven't talked with them in a while.
Shaun and Ali are familiar with the project. Adrian left ISE to start another project
[4:24 PM] Nathan Hauk: Independent Security Evaluators
[4:24 PM] Hans_Schmidt: More than an audit, we need to get testing going on testnet again so that we can beat it up ourselves
[4:25 PM] Nathan Hauk: I'd love to do an AMA on misconceptions about security assessments with you all. Maybe Tron and I can do one in Texas
[4:25 PM] Tron: The last offer included a range. Something like $16,800 to $19,200. I think the discount was dependent on signing a contract, which I'm not comfortable doing as it removes the competitive bid process.
[4:26 PM] HyperPeek: Happy to help with that. What is the plan to upgrade testnet?
[4:27 PM] Nathan Hauk: A contract would remove barriers like not having priority (Kudelski). A contract with ISE would be ok but probably not the best you could do
[4:27 PM] Hans_Schmidt: If we had 2 solid months of active testing done on testnet, I might be comfortable saying "skip the audit". Without testnet, who knows?
[4:27 PM] [MASTER] roshii: that's what testnet is made for
[4:27 PM] Kent Bull: We should likely have our independent auditors use our testnet anyway as a part of the audit process.
[4:27 PM] Nathan Hauk: Internal testing usually results in very basic testing for low hanging fruit.
[4:28 PM] HyperPeek: depends… If you let me know what you want to break I will try…
[4:28 PM] Vincent: We can organize 'testnet' dev meetings at specific times and do some role playing… also help answer questions… for newbies
[4:28 PM] Synicide: would be nice if some non-consensus PRs can be included. I've had a trivial one for the GUI sitting out there for 5 months now :pensive_cowboy:
[4:28 PM] Nathan Hauk: The inventive to harbor an 0 day is a huge problem too. Consultancies won't do that
[4:28 PM] Hans_Schmidt: I think the last ISE audit didn't even find the fruit or even the tree
[4:29 PM] Kent Bull: I was working toward being able to hit small PRs like this. I spent a lot of time getting QT to work on my box.
[4:29 PM] Kent Bull: I had to do a custom install of an archived version of QT to get things to build.
[4:29 PM] Tron: There isn't much mining on testnet, so if the existing miners use a build that activates testnet via BIP9, then we also test the transition code over to P2SH.
[4:30 PM] Kronk Stark: #learn C++ please i will load it with training material
[4:30 PM] Kent Bull: Upgrading QT to a recent version may reduce developer frustration during the onboarding phase.
[4:30 PM] Nathan Hauk: The ISE audit was a 40k assessment. That's what you ought to expect for 40k. Professional pen testing costs the same per hour as a lawyer. 40k ain't gone getcha much
[4:30 PM] Kent Bull: Not the highest priority, just something to think about.
[4:31 PM] Tron: Make an issue for it, and the Foundation will fund it. Others have tried, it wasn't easy.
[4:31 PM] Hans_Schmidt: We've had a few more people offer to mine testnet full time in the context of the Electrum SIG. We can keep testnet going reliably.
[4:31 PM] Kent Bull: I'll do that now. Should we file that in the foundation repository?
[4:32 PM] Tron: Speaking of SIGs, if there's information about ones that have formed, I can help get that information distributed.
[4:32 PM] Tron: It belongs in the Ravencoin repository.
[4:32 PM] buzzdave: happy to keep a dedicated testnet server up and running & throw a few gpus at it
[4:33 PM] fdov: The code builds fine on a newer Qt, but getting the build-pipeline to work with a newer Qt is more work. I'm kind of on to it. But it was more complicated than I hoped.
[4:33 PM] ANCIENTSEVVY: Isn't it better to keep it cpu mineable for any who want to play around with it?
[4:33 PM] ANCIENTSEVVY: Who don't have good gpu?
[4:33 PM] Synicide: can't cpu mine kawpow afaik
[4:33 PM] ANCIENTSEVVY: Op
[4:33 PM] buzzdave: well we don't want to spike difficulty like what happened last week
[4:34 PM] ANCIENTSEVVY: Roger that
[4:34 PM] ANCIENTSEVVY: I've had to walk the diff down with Doug before so I get it haha
[4:34 PM] Mango Farm: I remember : )
[4:34 PM] buzzdave: (server daemon stopped, so ppl thought more hashrate = finding blocks)
[4:36 PM] bless yer heart: A lot covered already, with more to go.
We have covered P001 a bit but could use a finish to that topic.
[4:37 PM] Kent Bull: I'll write up a wiki article on getting the build to work with Qt 5.12.3.
Since I used brew to install it I had to look at the history in the homebrew recipes github repository in order to find the old qt.rb brew recipe that worked.
[4:37 PM] Tron: Switching back to ISE for P2SH, unless there are objections or alternative suggestions for an audit firm.
[4:38 PM] [MASTER] roshii: is the vote code going in there too?
[4:38 PM] Kronk Stark: I will find some options for security audit
[4:38 PM] Tron: Vote code?
[4:38 PM] Kent Bull: How well-formed is the vote code?
[4:38 PM] AbDe_llah: ???
[4:39 PM] Tron: I do not know of any vote code. Security audit is for the P2SH (for assets) code only.
[4:39 PM] boatsandhoes: I'd like to volunteer for that too. My coding skills are improving :pray:
[4:40 PM] Kent Bull: You can pair with me if you'd like. Paired code reviews are a great way to learn and teach and share knowledge.
[4:40 PM] Kent Bull: It sounds like we believe ISE is the better option since better value for money. Is this correct?
[4:40 PM] boatsandhoes: <3 very down. Thank you for the offer Kent 🙂
[4:41 PM] Tron: I think for about 20% more, we're getting a company that has seen the code before, and we're not hiring a sub-contractor through a security company. I'm open to other options, but we also need to get it going.
[4:41 PM] Kent Bull: I agree. Pull the trigger.
[4:42 PM] Kent Bull: Just don't take this ^ out of context haha
[4:43 PM] Kent Bull: What is the timeframe for ISE? Immediate?
[4:44 PM] Tron: I'll "pull the trigger" Monday unless I get more information about other options before then.
[4:44 PM] Kronk Stark: if they have already seen the code its the best play for now
[4:44 PM] Kronk Stark: I will ask around who Jp Morgan and others use for security audits
[4:44 PM] boatsandhoes: Agreed
[4:45 PM] bless yer heart: Great.
[4:45 PM] Tron: So that we can use somebody else? https://www.bankinfosecurity.com/chase-breach-affects-76-million-households-a-7395
Chase Breach Affects 76 Million Households
JPMorgan Chase has confirmed that 76 million households and 7 million small businesses were impacted by a breach that reportedly began in June and was not detected
[4:46 PM] Kronk Stark: more for price if its a problem, as i saw
[4:47 PM] Hans_Schmidt: LOL. Who has never been hacked?
[4:47 PM] Mango Farm: Bitcoin
[4:47 PM] Mango Farm: : )
[4:47 PM] Hans_Schmidt: Exactly !!
[4:47 PM] Tron: I made introductions of two developers to WhaleStreet that might have the requisite skills for working on a thin-client wallet for Ravencoin based on bluewallet.
[4:47 PM] boatsandhoes: Fantastic
[4:48 PM] boatsandhoes: There's also that wallet dev Kent talked to not that long ago. Kent Bull is he one of the two guys?
[4:48 PM] Kent Bull: I was introduced though I decided to go a different direction.
[4:48 PM] Kent Bull: It's a great opportunity though.
[4:50 PM] Tron: Just a reminder that there is a Meetup in Braveland (Ravencoin Campus) at 6pm (MDT) – 8pm (EDT). Software for virtual world: https://download.ravencoincampus.org/
[4:50 PM] Kent Bull: I will do what I can to support those who are working on the wallet though. It's awesome WhaleStreet is providing so many resources. Quite the commitment to the community.
[4:50 PM] Rikki RATTOE Hotel Floor Pooper: I heard the meetup is gonna be capped to 120 people fwiw
[4:51 PM] bless yer heart: Tron Thanks for the invite. ill be there as well
[4:51 PM] Rikki RATTOE Hotel Floor Pooper: So maybe get there a lil early if you're interested in attending?
[4:51 PM] boatsandhoes: Pretty sure blockchain tiger is going to stream it on YouTube
[4:51 PM] Tron: I introduced two devs – after Kent chose a different direction.
[4:51 PM] Rikki RATTOE Hotel Floor Pooper: Ahh, :beers:
[4:51 PM] Hans_Schmidt: Unfortunately not cross-platform . Windows/Mac only and won't work under Wine
[4:52 PM] Tron: I don't think there's a bouncer. Standing room only – let the meetup subscribers take seats first.
[4:52 PM] Tron: Since you're at home on your couch anyway, it isn't too much of a burden for your avatar to stand.
[4:53 PM] Rikki RATTOE Hotel Floor Pooper: 😉
[4:53 PM] bless yer heart: can we close out with a rapid fire round for community drivent updates?
[4:53 PM] bless yer heart: I will provide a condensed version of what happened here.
[4:53 PM] Tron: Yes. Go.
[4:53 PM] bless yer heart: updates for asset exchange
[4:53 PM] Destructo: Asset Exchange?
[4:54 PM] bless yer heart: 4 others to cover from pre meeting discussions.
[4:54 PM] boatsandhoes: Working on something with aslay
[4:55 PM] boatsandhoes: Will share when ready, will be open source
[4:55 PM] boatsandhoes: Almost done
[4:56 PM] boatsandhoes: Actually will do github and share in #development before the code is finished so people can understand the general mechanics
[4:56 PM] Jeroz: No updates on wiki, other than that the standard skin was updated. But I was sick all week and havent really looked at it.
I want to address testnet again. It needs to be forked. Currently, we are missing a dedicated "pool" to get it in. That should be solved now, because I have a private testnet stratum set up with logistical support from minermore. It's on a server of RealBokito | assetsexplorer.com
What I am still wondering about is how we should organise management of the code. Core devs seem pretty busy with everything, and PR https://github.com/RavenProject/Ravencoin/pull/873 is sitting in a long list of PRs waiting to get into the development tree.
I was wondering if it would be a good idea to pull 873 into a testnet repo at https://github.com/raven-community and work there on testnet code. I thought about adding @fdov's new building pipeline, so that everyone can have access to nightly builds.
If people object to that, by all means do, but I am looking forward to get this ball rolling.
-J
[4:56 PM] Nathan Hauk: Texas meetup at Texas A&M. April 13th
Featuring
IPAssetsTech#6990
Lyn Ulbricht
Mango Farm#3764
Some guy called tron
[4:56 PM] boatsandhoes: Just got my ticket yesterday. Super pumped for Texas!
[4:57 PM] Mango Farm: Looking forward to it
[4:57 PM] Tron: For anyone building something on Ravencoin, I'd like to get you a spot in the Expo Hall in Ravencoin Campus. You can put your brand, website, whitepaper, or promo video on a kiosk that anyone can see 24×7.
[4:57 PM] Kent Bull: Jeroz #873 is only waiting on the ISE audit.
[4:57 PM] Nathan Hauk: Raven meetup is one of several events happening during texas blockchain week. See you down there!!
[4:57 PM] Tron: I'll be there April 10th->14th.
[4:57 PM] Tron: Ravencoin day is April 13th.
[4:57 PM] Jeroz: Why do we need an audit for testnet?
[4:58 PM] Kent Bull: We don't, good point.
[4:58 PM] Synicide: the sooner we can start trying to break things, the better
[4:58 PM] Kronk Stark: Please get videos so we can blast social media of anything cool. i will screen shot events from tonight
[4:58 PM] Destructo: This is my life motto
[4:58 PM] Mango Farm: I'll start monkeying with P2SH straight away
[4:59 PM] boatsandhoes: Anyone down to start a telegram channel or something for the ravencoin meetup in Texas?
[4:59 PM] Tron: We don't need an audit for testnet. Testnet can go ahead. We also lost the two people that transitioned the builds to the Ravencoin.org website. So we may need to point people at the build artifacts that work for testnet.
[5:00 PM] Jeroz: fdov has a great pipeline for the artifacts. Would be nice to have a page to push them to
[5:00 PM] boatsandhoes: Haha, wish I had the camera to do so. If there is no one recording it, ill bust out my phone if its permitted
[5:01 PM] bless yer heart: Great community input this week.
do any Devs have current or future projects they would like to add or discuss?
[5:01 PM] Kronk Stark: pictures work
[5:01 PM] fdov: I would suggest merging my #904 into develop branch or something like that. You get the artifacts directly into the Ravencore github.
[5:01 PM] Mango Farm: Ravencoin IPFS is just about ready to ship. Localizing it now for Korea and Germany. I'm hoping next week. It will be a cool site I hope folks get some use out of it.
[5:01 PM] Kronk Stark: Tron whenever we can get the link for the livestream I will start posting on social media prior
[5:02 PM] Jeroz: Can we realise this in the short term, Kent Bull Tron
[5:02 PM] LSJI07 – BWS: If we do this the mainnet date for p2sh fork needs moving out a few years for now.
[5:02 PM] Kent Bull: I approved it. Is there anything preventing us from merging to master?
[5:03 PM] Jeroz: normally stuff first goes to develop for testing. Not sure about master
[5:03 PM] Kent Bull: Ok, so gitflow?
[5:03 PM] fdov: #904 is the build-pipeline. I have not merged the p2sh.
[5:03 PM] Jeroz: Binary signing is not in it as far as I understand.
[5:03 PM] Tron: I think we should get #904 into master. It fixes the pipeline only. It will not put the binaries on ravencoin.org.
[5:04 PM] Jeroz: Should a procedure be added to automatically sign them too? Or is that done manually?
[5:04 PM] Kent Bull: eventually yes
[5:05 PM] Tron: We had a semi-automated process for signing them as they got put onto ravencoin.org. I need to get that info from Mark.
[5:07 PM] Kent Bull: Just posted an issue for the Qt upgrade: https://github.com/RavenProject/Ravencoin/issues/906
[5:07 PM] Jeroz: Ok so,
– Get 904 in for building process (add signing procedure later?)
– push to a nighly build page
– Set params of P2SH for a testnet fork date?
– I can move testnet ravend to my private stratum and get hash on it.
anything holding this back rn?
[5:08 PM] Kent Bull: No, all we need is a binary built from that PR. We just need the target architecture and then to build a binary.
[5:09 PM] Kent Bull: Let's get together afterwards and coordinate getting you a binary.
[5:09 PM] fdov: Kent Bull you get that automatically with #904.
[5:09 PM] Kent Bull: Ok, great, let's use automation wherever we can.
[5:09 PM] Jeroz: Im off to bed in a few but can definitely come back to you on this in the coming days.
[5:09 PM] Kent Bull: Are we good to merge #904 to master immediately?
[5:10 PM] LSJI07 – BWS: Need better osx sdk source.
[5:10 PM] fdov: Kent Bull SDK-source, is my only concern, as mentioned in the commit message.
[5:11 PM] Mango Farm: fdov thank you for doing the IPFS PR (901)
[5:11 PM] Jeroz: Ok im off for now. Thanks for the meet. Good progress! :slight_smile:
[5:11 PM] bless yer heart: GN Jeroz thanks for your help.
[5:12 PM] Hans_Schmidt: We all want progress on getting testnet back active. But these don't seem like the kind of decisions we should be rushing to squeeze into the final overtime minutes of a meeting,
[5:13 PM] Tron: Skipping the after-dev virtual AMA. Preparing for the Ravencoin Global meetup at 6pm (MDT). See you there.
[5:13 PM] Tron: Which decisions?
[5:13 PM] fdov: Mango Farm Thanks. :slight_smile:
[5:13 PM] Mango Farm: Thanks Tron. Have a good weekend all.
[5:13 PM] Mango Farm: :thumbsup: :thumbsup:
[5:13 PM] Hans_Schmidt: Exactly where to host new qt repository code
[5:14 PM] LSJI07 – BWS: Agree. Just want to know what a trusted osx sdk looks like. :joy:
[5:14 PM] boatsandhoes: Theres an after dev meeting ama in braveland today?
[5:15 PM] Destructo: Is there any place where people in the community can volunteer their (non-dev) services? Like some sort of sign-up/contact list so we can team up on things like marketing/media, or even beta testing some of the development as end users. Plenty of us "non-tech" peeps wanting to help :slight_smile: If so, please point me in the right direction! KAW!
[5:15 PM] Tron: We have been having an after-dev meeting. Last week in Braveland, and the previous week in spatial.io. This time, though, it will be with everyone in Braveland at 8pm (EDT), or 6pm (MDT).
[5:16 PM] Tron: The nest might be the best place to coordinate that (or get your face ripped off). It kind of varies from day to day.
[5:16 PM] Destructo: truth
[5:17 PM] LSJI07 – BWS: Keep an eye on #testnet channel and the next important community challenge will be posted there imo.
[5:17 PM] Rikki RATTOE Hotel Floor Pooper: Try and get ahold of nakedapples he seems very determined to get the marketing going
[5:17 PM] Kent Bull: LSJI07 – BWS I'll download that .tar.gz file and see what I can find out on sourcing the SDK from a more trusted place.
[5:17 PM] Kent Bull: I'll post updates to #development
[5:18 PM] Kent Bull: bless yer heart thank's for kawwardinating today!
[5:19 PM] bless yer heart: Thanks everyone. I appreciate the assistance and grace as I continue to get involved.
[5:20 PM] bless yer heart: Would love to help you organize something. DM me. you have your acct locked down.
[5:35 PM] Under: Kent Bull that sdk is not open source
[5:36 PM] Under: Get a clean copy from Apple direct creating your own dev account. Shouldn’t be redistributed. Per their ToS.
[5:36 PM] Under: Hence why Bitcoin does not include it in any automated build scripts
[5:37 PM] Kent Bull: Got it. Maybe we can legally transform it from the limited context of our build pipelines only during the build process.
[5:39 PM] Under: Smarter people than I figured out a good build method. I only cloned it from them. And the process/procedure is well documented and meant to be run by 5-10 individuals each personally running a build and then comparing the outcomes, then taking one of the built binaries and signing it with a Apple code signing cert. then they publish.
[5:40 PM] Under: Each builder is responsible for fetching their own copy of the sdk.
submitted by /u/Blockchain_Surfer
[link] [comments]