Justin Cappos
Justin Cappos
I am willing to be a security reviewer for this project. I have read the security reviewer guidelines (in the past, before their link was broken... 😦 ), and have...
> Hey @JustinCappos, I would like to volunteer with the security review (depending on eligibility). > > @gaius-qi, The "security reviewer guidelines" link and the "outline" links are not working...
@gaius-qi Are you also going to be the Dragonfly POC throughout the joint review?
Okay, great! And away we go! @mnm678 you're all set to kick this off with the naive questions phase...
pinging again on this... Just want to make sure we're no dropping this issue...
@mnm678 should we start this process? Maybe we should use the channel [#sec-assessment-dragonfly](https://cloud-native.slack.com/archives/CRCC875BM) to discuss next steps.
I'm happy to participate in this review as a normal reviewer. I have no conflicts.
Sounds good. I'm not a maintainer for this document, but imagine this would add it to the tools list on item 1 on this page: https://tag-security.cncf.io/community/publications/supply-chain-security-tools/securing-deployments/
Speaking from my experience with TAG Security, the problem hasn't been that people are being prevented from stepping up. The problem is getting people with the right skill set who...
What do you think the best resolution is? On Mon, Aug 19, 2024 at 5:58 AM Lukas Pühringer ***@***.***> wrote: > This paragraph from the metadata format section > >...