Justin Cappos
Justin Cappos
I'd like to quickly add here a few reasons why projects that are in the CNCF might want to consider this: - Additional channel to promote the project. A different...
I also don't have expertise in this area, but would be happy to help others who have the right skill set with the process.
Looking forward to learning more! I'd recommend starting on a [self assessment](https://github.com/cncf/tag-security/blob/main/assessments/guide/self-assessment.md) if you haven't already done so.
This is a laudable goal. I'm curious what a git user will see in this case if we have multiple signatures or signatures using a key type unsupported by git.
I'm picking up stale items in the security assessment queue to try to push them forward. Apologies for the delay on your assessment! Is an updated self-assessment available? I don't...
Okay, sounds good! Please ping us once you have your self assessment ready.
Let us know if you decide to move ahead with this again. I'll close this issue for now, but feel free to reopen it / open a fresh one when...
Thank you for sending this self assessment. Can you give a copy in Google Doc format so it is easy for us to comment on it? Also, given the project...
Okay, thanks! @ggebel Will you act as the project security lead?
> Yes, @JustinCappos , I will act as security lead and bring in others as necessary Okay, thanks. I added you above.