in-person debrief

In #2, @aurel32 said:

Overall it also shows that we are not ready for the case a backdoor or a major security disaster is introduced in a key package, and we should probably get ready for when an issue with more consequences happens (independently if preventing that to happen)

@mhy:

I agree with @aurel32 that this shows that we need to be better prepared for certain scenarios. After the kernel point release problem, there was a short discussion about whether we should have an in-person meeting to debrief and see what could be improved in process/communication/etc. I wonder if it's time to organise that (with representatives from each of ftp/DSA/release/buildd/security if possible).

Tracking that here so it's not lost in a closed issue.

Moritz suggested piggy-backing on the Berlin MiniDebconf as an option.

cc @jcc