Arya Bahnken
Arya Bahnken
gpg.mozilla.org is busted at the moment and it is likely that it will stay this way. Mozilla has been wanting to retire it for a while, and it looks like...
There seems to have been a number of issues surrounding our use of AWS profiles: - https://github.com/mozilla/sops/issues/471 - https://github.com/mozilla/sops/issues/614 - https://github.com/mozilla/sops/issues/619 - https://github.com/mozilla/sops/issues/474 - https://github.com/mozilla/sops/issues/439 Storing the AWS Profile in...
At Mozilla, we are currently only using sops audit for a very specific use case where it might make more sense to lean on something like the linux auditing framework...
Would be nice for those more Postgres-friendly shops (like where I work). Definitely a nice-to-have.
We can utilize CodeClimate or just embed it within our CI platform node security platform: https://github.com/nodesecurity/nsp
CodeTriage lists Lantern (https://www.codetriage.com/getlantern/lantern) as Java instead of Go. Repo Link: https://github.com/getlantern/lantern
_from this discussion: https://github.com/mozilla/frost/pull/417#discussion_r524492537_ Currently, there is some brittleness around how our AWS resource calls and the id extraction are separated from each other. This is currently leading to vague...
Currently Frost's `resource.py` and `client.py` files, which are used for actually retrieving resources from services like AWS, are completely untested within our unit testing in CI. We should start using...
A feature that has been asked for a couple of times is the ability to have predefined groups of tests that can be run, instead of having to list each...
As we document our logging strategy / policy for GCP, it would be nice to add tests for this into Frost. cc @kkleemola @ameihm0912