Vlad IonescuControlled, monitored, and audited by who? I believe y’all and appreciate the right approach here but I don’t know any of you and it sounds like a setup for “we investigated ourselves and found no wrongdoing”.
pirate moo 🐮@ucsenoi The owner of this instance is @jerry and you can find a link to the moderation staff within the Wiki here:
https://wiki.infosec.exchange/about/moderators
I guess what I meant to ask isn’t exactly who, it’s pointing out that I don’t think having the ones doing the access be the same people who audit for abuse is an inherently trustworthy setup. Either there is a team who has separate incentives and power to hold those with access accountable, or the public must take that role which means there needs to be transparency to empower people to do that.
Anyway it’s not an easy solution especially when it’s all volunteers. I appreciate the work you’re all putting into having responsible moderation here.
@ucsenoi Basically, I wanted my script to be able to pull reports and calculate the average ranges of problem type/resolutions implemented and toot those stats weekly.
I completely failed on that end and am still trying to figure it out sigh.
ddench who art in infosec exchange 
@apiratemoo @paco it seems that the sort of controls @ucsenoi is suggesting wouldn't really be possible with the current governance structure of this instance, as Vlad admits, it's not really possible. However @jerry briefly mentioned future intentions for governance, and these suggestions might have a place there. I think until then keeping confidential data off platform is a must, as is the implicit trust in the mods and admin (of any Mastodon instance) to "Do The Right Thing" (TM). Users have to personally come to terms with that, which will be tricky for some.