-
Notifications
You must be signed in to change notification settings - Fork 514
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Kyverno security self assessment #852
Conversation
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
This is awesome! We'll do a short "clarifying questions" phase review on this just to clarify on some points (if needed) and we'll can merge it in! Part of this phase is to do the following:
|
Please include me |
interested in helping out. After a chat with Brandon on this PR - I've read up on https://github.com/cncf/tag-security/blob/main/assessments/guide/self-assessment.md - I'm missing some elements in this one: |
For discussion tonight with @lumjjb: |
Hard conflicts: Soft conflicts: |
Thanks @dutchshark!
Are there other sections or information you recommend we add to the self-assessment?
Kyverno uses Golang but is delivered as a container image and manifests. The available installation are options are via a Helm chart or YAMLs. The Security page provides a link to the SBOM. We can reference in the installation as well. |
You're welcome @JimBugwadia - I'm only here to help;
I think the initial self-assessment is providing that what tag-security needs and the more details provided the better. Hence my comments around the adding of the SBOM to your self-assessment.
If you could put it on your self-assessment that would be great. |
Signed-off-by: Shubham Gupta <shubham.gupta2956@gmail.com>
Signed-off-by: Shubham Gupta <shubham.gupta2956@gmail.com>
Add SBOM and metadata in self-assessment
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm , added wesley as another reviewer
Co-authored-by: Brandon Lum <lumjjb@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com> * updates for self-assessment Signed-off-by: Jim Bugwadia <jim@nirmata.com> * address comments from John Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix sp Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix double @ Signed-off-by: Jim Bugwadia <jim@nirmata.com> * cspell disable names Signed-off-by: Jim Bugwadia <jim@nirmata.com> * Add SBOM and metadata in self-assessment Signed-off-by: Shubham Gupta <shubham.gupta2956@gmail.com> * Update SBOM fetching link Signed-off-by: Shubham Gupta <shubham.gupta2956@gmail.com> * Update assessments/projects/kyverno/self-assessment.md Co-authored-by: Shuting Zhao <shutting06@gmail.com> Co-authored-by: Shubham Gupta <shubham.gupta2956@gmail.com> Co-authored-by: Brandon Lum <lumjjb@gmail.com>
cc: @jlk