tag-security
tag-security copied to clipboard
cncf
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
Description: Develop a White Paper specifically focussed on **Serverless Security Best Practices** for Cloud Native technologies. The paper will enumerate security best practices & Security Controls to be implemented in...
Description: Execute a pilot that introduces and encourages one or two projects to complete a [self-assessment](https://github.com/cncf/sig-security/blob/master/assessments/guide/self-assessment.md) with a CNCF SIG-Security person assigned to walk them through and guide them on...
**Communications/Meetings for this issue** A group meets up to discuss this issue as part of the Supply Chain Working Group. To keep in the loop of conversations, please join the...
Access to the CNCF service desk is controlled and audited against leadership roles listed in this readme. Michael Lieberman has been leading the secure supply chain working group. By request...
- Various edits to appease the `mdl` linter. - Enforcing some style changes (i.e. common indentation and trailing period literals in unordered lists, etc.). - Using a shell script to...
Why: * we want to avoid too many presos * we want to ensure we have ample time for agenda items This change addresses the need by: * modifies the...
Why: * Need to provide information regarding review participants within the template This change addresses the need by: * Breaking Metadata into two sections one for the review, the other...
Description: A security "nutrition label" and project badge offers a standardized way to communicate particulars related to the security of a project to potential users - if it requires administrative...
Description: Change the way that triage is done for the repo today. Due to the increase in number of issues, PR and members, the usual ad-hoc triage system tends to...
Description: Make this much more clear. expand [this PR](https://github.com/cncf/sig-security/pull/545) to more clearly define the actual turn of a proposal to a project. Impact: expedite corralling works in progress to be...