tag-security
tag-security copied to clipboard
cncf
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
Created and added first draft for **Chaos Mesh** Project Security Self-Assessment. Please feel free to share your feedback on the security self-assessment.
With increased adoption of cloud native technologies, it is important to minimise risks. Certain types of configuration risks (or there-lack of) are more common than others. There is a need...
Description: Compliance TAG and CNCF projects Impact: The Open Source projects Trestle, Agile Authoring, and Compliance2Policy help automate the creation and management of various compliance artifacts in a machine processable...
Title: Auto VEX generation for projects with Kubescape Operator Speakers: * Ben Hirschberg - @slashben Description: This is an introductory presentation to TAG Security about [VEX](https://github.com/openvex/spec) [generation capabilities](https://kubescape.io/docs/operator/generating-vex/) of the...
Title: vSphere CSI Driver Overview Speakers: Xing Yang, Ala Dewberry Description: We will go over the vSphere CSI driver to inform participants in the Kubernetes SIG Security self-assessment of this...
### Details Project Name: **Karmada** Github URL: https://github.com/karmada-io/karmada CNCF project stage: Sandbox preparing for incubation - Sandbox Proposal: https://github.com/cncf/toc/issues/721 - Incubation Proposal: https://github.com/cncf/toc/pull/986 Security Provider: No Self-assessment link (before PR):...
Description: what's your idea? Impact: Describe the customer impact of the problem. Who will this help? How will it help them? Help grow community interest and participation in all aspects...
Description: Create a mapping from various open source tools to the supply chain security whitepaper. I have an initial draft of a spreadsheet available [here] (https://docs.google.com/spreadsheets/d/1CzvnInT7QOmTOz20W5TiX8tJiG9XZvdqYA3TivLx-PI/edit#gid=0). This mapping can be...
**Description**: I'd like to run a pilot at NYU where I have a class of 100-150 students help CNCF projects get a self assessment completed. The students will work in...
Description: Cloud Native Security White Paper Spanish translation V2 Following the [discussion about upgrade the Spanish translation to v2](https://github.com/cncf/tag-security/pull/1040#issuecomment-1445151905), this issue wants to track the advance of this initiative. Impact:...
