tag-security
tag-security copied to clipboard
cncf
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
RubyGems security flaw allow overriding gems: https://www.bleepingcomputer.com/news/security/check-your-gems-rubygems-fixes-unauthorized-package-takeover-bug/
## Description Original security whitepaper (#138) was published in Nov 2020, followed by version 2 (#747) in May 2022. Since then we have received a lot of community feedback for...
Project Name: KubeVela Github URL: https://github.com/kubevela/kubevela CNCF project stage and issue: https://github.com/cncf/toc/pull/890 (incubation) Security Provider: no - [ ] Identify team - [ ] Project security lead @wonderflow - [...
Project Name: KubeEdge Github URL: https://github.com/kubeedge/kubeedge CNCF project stage and issue (NA if not applicable): Incubation and preparing for graduation - Sandbox Proposal: https://github.com/cncf/toc/pull/205 - Incubation Proposal: https://github.com/cncf/toc/pull/461 - Graduation...
Signed-off-by: vincentgoat Issue: https://github.com/cncf/tag-security/issues/974 cc @lumjjb
Description: add helpful error message for spelling lint errors Impact: speed up PR review/resolution by teaching contributors to fish! Scope: I would expect it to take a few hours for...
Review Security Vulnerability/Communication response policy for CNCF incubated/graduated projects
Description: as discussed in Feb 16 TOC meeting (TBD toc issue), take a look at incubated/graduated projects and check to what degree projects have documented policies for users to report...
People and permissions have been moved to the [cncf/people/config.yml file](https://github.com/cncf/people/blob/main/config.yaml) making permissions in the local settings.yml file redundant. Proposed updates: - [x] Remove the people from the local settings.yml -...
This is an attempt to convert the CNCF Zero Trust Whitepaper to Markdown format as requested by the community. The original document: https://docs.google.com/document/d/10g2390JdCBXmSmzQ_EGHFWrg2JosPsXLaqXaGQ-B9NA/edit?usp=sharing CNCF issue: https://github.com/cncf/tag-security/issues/950 This is still a...
