Pushkar Joglekar comments

Results 175 comments of


                                            Pushkar Joglekar

trafficstars

[Suggestion] Cloud Native Security Stacks

@lumjjb IMO, We could do it as a follow up to #737

[Suggestion] Add Content on Maintaining Up-To-Date Dependencies

Somewhat related PR to this topic: #887

Add lead rotation for long projects/work to roles.md

@lumjjb looks like rebase needs to resolve conflicts before we can merge. If you are okay, I can make those changes for you and merge!

[Proposal] Apply Supply Chain Security WG Best Practices to new or existing CNCF Project

With my both hats on from TAG Security and SIG Security -- let's do this and let me know where I can help !! 🎉

docs: add Liran Tal to reviewers for supply chain security docs

@lirantal with #970 now merged, would you be willing to make a one-line change to add your Github handle to this list: https://github.com/cncf/tag-security/blob/main/.github/auto_request_review.yml#L28-L33 ? This will allow you to get...

[Proposal] Collab w/ TAG Observability

@mlieberman85 any updates on this after our initial triage?

Proposed additions to supply chain security compromises list

Thank you for opening this issue!! @kurtseifried : Would you mind opening a PR to add these to the list? Apologies if you already did and I missed it

[Suggestion] Scrub Security TAG project resources against OpenSSF disclosure guide

Chairs/TLs are meeting with NIST SSDF folks soon. Please remind me to update this issue with more info in a couple of weeks or so.

[Suggestion] Review NPM supply chain proposal and make recommendations

@mlieberman85 any updates on this? (Just doing this as part of triage in working session)

Cloud Native Security Whitepaper v2

> Seems like a lot of great metadata and organization tie in. What's the thinking on revising the content itself? (not suggesting just asking) > > Interested in helping potentially...