We just made a small tweak to the Committer’s Agreement that everyone with privileges to check in directly to the Mozilla source code trees has to sign. The change is to the section titled “Committing Code Created by Others“, and it is:
You may check in Code to a Mozilla Foundation repository that was not written by You, provided that:
a) The checkin comment contains information (or references to information) sufficient to identify the author and the license of the Code,
including at minimum an email address; andand a link to a public source repository if one is available; and
b) You make all reasonable and appropriate efforts to ensure that such Code conforms to the terms of this agreement.
It isn’t necessary or a good use of time to get everyone to re-sign it :-), but please can existing committers be aware of the need to document license and source when checking in code from external sources. It’s important that we know where our code comes from, and who to contact if there’s a problem.