Just running through publishing dev-images with @jeena, discovered that previous updater of /srv/dev-images on contint1002 winds up owning some files in .git with insufficient group-level access to update things.
We should fix this, since we'd like to extend publishing permissions to several folks outside of RelEng.