00:02:52	Maccabee Levine:	I will have to drop off at around x:45.
00:06:04	Maccabee Levine:	FYI I will attend PC this week to clarify where they are posting functionality approvals now.  Our TCR criterion points to a wiki page, but they also have a Jira now, and neither were (quickly) updated after their most recent approval for the TCR I'm doing currently.
00:08:35	Craig McNally:	https://folio-org.atlassian.net/browse/KEYCLOAK-69
00:10:45	Jenn Colt:	It sounded like in PC Harry made it sound like Kong was staying
00:16:03	Maccabee Levine:	https://github.com/folio-org/tech-council/pull/103/files
00:29:08	Maccabee Levine:	"To scan your project with Semgrep Supply Chain, it must have a manifest file or lockfile and use supported package managers and filenames."
00:31:31	Shelley Doljack:	Presentation-worthy explanation of what a lock file is. Thanks Zak!
00:31:53	Shelley Doljack:	Reacted to "Presentation-worthy ..." with ♥️
00:32:48	Maccabee Levine:	Reacted to "Presentation-worthy ..." with ♥️
00:32:58	Day, Kevin:	Additionally, Semgrep offers beta support for the scanning of projects written in the following languages without lockfiles:
However, this is the "Beta" release.

This also affects things like Java maven:
Maven-generated dependency tree (See Setting up SSC scans for Apache Maven for instructions.)
00:33:39	Zak Burke:	Reacted to "Presentation-worthy ..." with ♥️
00:34:44	Shelley Doljack:	https://folio-org.atlassian.net/wiki/x/jAA8S
00:35:24	Maccabee Levine:	Reacted to "Additionally, Semgre..." with 👍🏻