Dear CAB Forum members, I just want to draw your attention to a discussion I've just started in mozilla.dev.security.policy about a proposed more comprehensive ban on SHA-1 use in hierarchies which chain up to Mozilla-trusted roots. Your input in that forum is most welcome. Gerv