GNU bug report logs - #51976
Inquiry: gzip for NASA Use

Previous Next

Package: gzip;

Reported by: "Zhang, Cynthia X. (GSFC-705.0)[TELOPHASE CORP]" <cynthia.x.zhang <at> nasa.gov>

Date: Fri, 19 Nov 2021 19:10:01 UTC

Severity: normal

Done: Paul Eggert <eggert <at> cs.ucla.edu>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: help-debbugs <at> gnu.org (GNU bug Tracking System)
To: Paul Eggert <eggert <at> cs.ucla.edu>
Cc: tracker <at> debbugs.gnu.org
Subject: bug#51976: closed (Inquiry: gzip for NASA Use)
Date: Fri, 19 Nov 2021 19:31:02 +0000

[Message part 1 (text/plain, inline)]
Your message dated Fri, 19 Nov 2021 11:30:48 -0800
with message-id <3f7024b0-d26f-aa58-8005-ada091ce0b5a <at> cs.ucla.edu>
and subject line Re: bug#51976: Inquiry: gzip for NASA Use
has caused the debbugs.gnu.org bug report #51976,
regarding Inquiry: gzip for NASA Use
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs <at> gnu.org.)


-- 
51976: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=51976
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems

[Message part 2 (message/rfc822, inline)]
From: "Zhang, Cynthia X. (GSFC-705.0)[TELOPHASE CORP]"
 <cynthia.x.zhang <at> nasa.gov>
To: "bug-gzip <at> gnu.org" <bug-gzip <at> gnu.org>
Subject: Inquiry: gzip for NASA Use
Date: Fri, 19 Nov 2021 19:04:40 +0000

[Message part 3 (text/plain, inline)]
Hello, my name is Cynthia and I am a Supply Chain Risk Management Analyst at NASA. NASA is currently conducting a supply chain assessment of gzip. As stated by Sections 208 and 514 of the Consolidated Appropriations Act, 2021, Public Law 116-260, enacted December 27, 2020, a required step of our process is to verify the Country of Origin (CoO) information for the product, aka the country where the products were developed, manufactured, and assembled. As gzip is open source, we understand that this inquiry is not directly applicable, as contributions may be made from individuals from around the world. In this case, NASA is interested in confirming whether there is an organization which sponsors/publishes the project, or a primary developer who audits the code for potential vulnerabilities, errors, or malicious code. Does gzip have overseeing organization or individual along these lines? If so, please provide the country they are established in so we can provide as much insight as possible following our federal mandate.

Thank you,
Cynthia


[Message part 4 (text/html, inline)]
[Message part 5 (message/rfc822, inline)]
From: Paul Eggert <eggert <at> cs.ucla.edu>
To: "Zhang, Cynthia X. (GSFC-705.0)[TELOPHASE CORP]" <cynthia.x.zhang <at> nasa.gov>
Cc: 51976-done <at> debbugs.gnu.org
Subject: Re: bug#51976: Inquiry: gzip for NASA Use
Date: Fri, 19 Nov 2021 11:30:48 -0800

On 11/19/21 11:04, cynthia.x.zhang wrote:
> Does gzip have overseeing organization or individual along these lines?

Yes, the GNU project sponsored by the Free Software Foundation. For 
details, please see:

https://savannah.gnu.org/projects/gzip

There's a similar web page for each GNU program that NASA uses. (I hope 
you needn't send email for each program....)
This bug report was last modified 3 years and 185 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.