tag-security
tag-security copied to clipboard
cncf
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
Each TAG now has a youtube account which can stream the meetings (either for live streaming or as a way to "upload" to youtube). This process needs to be figured...
Description: Currently if someone browses to the [TAG GH page](https://github.com/cncf/tag-security/), it's sort of a confusing thing. The top-level readme talks about meetings, membership, leadership, objective, and vision...but not really what...
Description: What's your idea? Improve new member experience to allow members to be able to contribute faster, or get more comfortable with the contribution process. Impact: This will help strengthen...
This issue was created from results of the Security Assessment Improvement Working Group (https://github.com/cncf/sig-security/issues/167#issuecomment-714514142). # Getting more reviewers for Security Assessments ## Premise - Challenge of assembling a team for...
Description: from twitter: https://twitter.com/clintgibler/status/1398046293340037121?s=19 1. The paper lists assurance/risk for each task. Would that be useful to add to the checklist? * [ ] Map assurance levels to the [checklist...
### Description: ~~The Policy WG was merged into the SAFE WG which then became sig-security.~~ EDIT: See below from @ultrasaurus (summarized here) >Before SAFE WG was formed...several folks involved in...
Create new triage system and triage definitions Signed-off-by: Brandon Lum related to https://github.com/cncf/tag-security/issues/665
the joint-review README template needs updated to specify: - [ ] original issue for assessment, - [ ] assessment date, and - [ ] project status at time of assessment...
Description: Establish a project resources directory within Security TAG that contains templates and other useful security information for CNCF projects. Impact: We've had a request from at least two projects...
Description: I propose that we write a sequence of mini blogs that delve deeper into the various sections of the Cloud Native Security Whitepaper Impact: The obejctive of the blogs...
