tag-security
tag-security copied to clipboard
cncf
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
Description: We need a PR in the repo (maybe under an Events folder) that covers Cloud Native Security Con information from the perspective of the STAG running/coordinating it and defining...
Description: The Security TAG has done some work based on work by @SantiagoTorres. OpenSSF is looking at potentially starting their own catalog or want to contribute to existing catalogs. There...
Description: what's your idea? In short, this proposal is about making it easier to fuzz CNCF projects from a management perspective. In the last year we (Ada Logics) have been...
Description: it will be good to work with other organizations to build consensus on CNCF SBOM guidelines and support tooling. Will fill out more details here soon. (Currently mobile)
Description: Create a badging system to recognize contributions in the TAG. Impact: Help provide recognition for work done by community members, by providing a badge (like credly badge) that can...
Description: OpenSSD released an Open SSF vulnerability disclosure guide for OSS projects. We want to review our existing project resources and information and ensure it is alignment with the OpenSSF...
This is to migrate content from #488 regarding TOC process alignment. it has an initial update to move the TOC alignment section from the original #488 PR and should be...
Description: Modify the Security Review process to: * [ ] initiate a draft/WIP PR of the self-assessment and/or joint-review prior to the presentation to closeout the review * [ ]...
This issue details the current and upcoming issues to be triaged. This issue is ongoing and should not be closed unless triage process is changed. Oid AIs. Next to discuss:...
Description: Currently, the SIG performs assessments of projects at various stages in the CNCF. We receive requests to provide recommendations on the project as part of the due diligence document....