P-Y on Nostr: Has anyone written about how SOX Compliance doesn't have to mean a developer ...
Has anyone written about how SOX Compliance doesn't have to mean a developer experience that sucks?
E.g. how nothing in there says "you must have PRs with 2 reviewers" or "each folder needs to have a team with blocking reviewers" ?
There's this lazy thinking going around that SOX Compliance & security mean we must make code reviews more painful.
I feel like maybe npub1dy4c8059sgw30eeynjmd3jvgspwl3qa6aepye7v0nvzjxuekwaus2l9aec (npub1dy4…9aec) would have written about that?
E.g. how nothing in there says "you must have PRs with 2 reviewers" or "each folder needs to have a team with blocking reviewers" ?
There's this lazy thinking going around that SOX Compliance & security mean we must make code reviews more painful.
I feel like maybe npub1dy4c8059sgw30eeynjmd3jvgspwl3qa6aepye7v0nvzjxuekwaus2l9aec (npub1dy4…9aec) would have written about that?