tag-security
tag-security copied to clipboard
cncf
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
Description: The STAG group members often have good ideas they want to get out to the broader community. We've started to write up blog entries, etc. It may be useful...
*This is a follow-up from the Supply Chain WG discussion* We are looking for joint work with TAG Security to align Kubescape with the supply chain best practices. Project Name:...
Description: I would like to start translating the Cloud Native Security white paper v2 into Japanese. Impact: This would help the Japanese-speaking community understand and adopt best practices for cloud...
Project Name: Cilium Github URL: https://github.com/cilium CNCF project stage and issue: https://github.com/cncf/toc/pull/952 (Graduation) Security Provider: Yes - [ ] Identify team - [ ] Project security lead - [x] Lead...
Description: What's your idea? In the charter of the Kubernetes Data Protection WG, we have a note that we'll consult CNCF TAG Security for security related issues: https://github.com/kubernetes/community/blob/master/wg-data-protection/charter.md However, we...
**Description**: Add and integrate certificate management best practices, principles with other recommendations **Impact**: Improve security posture for selected use cases, Enhance productivity where automation support can be added. Potentially add...
**Description: what's your idea?** --- Original security whitepaper (https://github.com/cncf/tag-security/issues/138) was published in Nov 2020, followed by version 2 (https://github.com/cncf/tag-security/issues/747) in May 2022. Since then we have received a lot of...
Title: Ratify project overview and demo for CNCF Sandbox application Speakers: @akashsinghal @luisdlp Description: Ratify is a verification engine on Kubernetes which enables verification of artifact security metadata and admits...
The team is now ready for a joint assessment. **Project Name**: OpenFGA **Github URL**: https://github.com/openfga/openfga/blob/main/docs/security-self-assessment.md **CNCF project stage**: https://github.com/cncf/toc/pull/1276 (incubation) **Security Provider**: yes (e.g. Is the primary function of the...
