David Hadas

icon indicating an email [email protected]

icon company IBM Research icon location Security Research at IBM Research Labs

Results 48 comments of David Hadas

KBS: Add a `Delete` method to /resource/{repository}/{type}/{tag}

@Xynnn007, an entity having privileges to add a resource should also have the privilege to delete it. It seems that there are two types of approaches that are now being...

Added the scorecard github action and its badge

@harshitasao I suggest we separate this PR into 2 parts: First, lets add the Scorecard GitHub Action

Feat | Implement initdata for bare-metal/qemu hypervisor

How can we extend this work to also support CAA configuration that need to be measured, same as CDH configuration or AA configuration? See https://github.com/confidential-containers/cloud-api-adaptor/pull/2072 And https://cloud-native.slack.com/archives/C04A2EJ70BX/p1729067445890829 Cc @bpradipt ,...

Feat | Implement initdata for bare-metal/qemu hypervisor

This PR will not allow configuring PeerPods agent-protocol-forwarder (APF) since APF is active prior to the kata-agent. Further, under peer-pods SecureComms, the communication between the runtime and the kata-agent is...

Publish threat model in documentation

This looks valuable to me as is. I suggest to approve it. /lgtm

Enable OpenSSF Scorecard to enhance security practices across the project

@harshitasao hi, As a first impression - Sounds good!! I will spend some more time learning about the checks later. I assume a project may have some flexibility in tuning...

Improvement of OpenSSF Scorecard Score

Welcome @harshitasao As for Fuzzing - see https://knative.dev/blog/events/fuzzing-audit-2023/ See also https://knative.dev/blog/events/security-audit-2023/ cc @evankanderson

Combine Steering and TO Committees

+1