Roberto Polli
Roberto Polli
## The following SAMMs are not used in dsomm ``` | 3 | O-OM-2-B | Operations | Operational Management | 2 | System Decomissioning / Legacy Management | | 7...
## I wish - the yaml content use markdown instead of html ## Instead - it uses both html and markdown - markdown fields have different name ## Note if...
## I expect - [x] php syntax checks - [ ] application tests - [ ] github actions - [x] docker-compose
## I propose - to associate standards to a given action, use a list ### Proposal 1 ``` references: - iso27001: xxx ``` ### Proposal 2 ``` references: iso27001-2017: -...
## Further references to be considered - [ ] [NIST SP 800-63-3](https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63-3.pdf) - [ ] https://csrc.nist.gov/projects/cyber-supply-chain-risk-management
## Question ### Q1 The `Dimensions` part in [USAGE.md] is copied from [owasp_in_sdlc](https://github.com/OWASP/www-project-integration-standards/blob/master/writeups/owasp_in_sdlc/index.md). It could make sense to automatically integrate stuff from there. ### Q2 Consider not suggesting libraries in...
## I wish - risks to be in a vocabulary ## Note - Risks are frequently reused, having a "vocabulary" it would make easier to manage them - A vocabulary...
## Question Is there a standardization process for tus.io? It would be great to discuss the spec inside the IETF.
## I expect - to list all CWEs associated to the current configuration ## Example ``` $ bandit --help --cve ... The following tests were discovered and loaded: -------------- B406...
## I wish - to have an openapi spec for geoportal-server - the openapi.yaml represents in a usable way the informations in https://github.com/Esri/geoportal-server/wiki/REST-API-Syntax