Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Security Pals 11: added Antrea self-assessment first draft assessment…
…s/projects/antrea/self-assessment.md Signed-off-by: molofgarb <[email protected]> Ethan: Project Switch switched project from KubeVirt to Antrea because KubeVirt has already been assessed Signed-off-by: molofgarb <[email protected]> Ethan: Self-Assessment sub-files made to facilitate better parallel work and commits Signed-off-by: molofgarb <[email protected]> Ethan: fixed names for individual group members' files Signed-off-by: molofgarb <[email protected]> Ethan: modified metadata sections (pre-overview) and added the self-assessment template to directory as a reference the self assessment template file should be deleted before merging back with main cncf tag repo Signed-off-by: molofgarb <[email protected]> Ethan: added authors' names (in alphabetical order) and the date of self-assessment to main document Signed-off-by: molofgarb <[email protected]> Ethan: updated Antrea SBOM to have an accurate link and substituted Antra name into Self-assessment use section in place of [project] Signed-off-by: molofgarb <[email protected]> Ethan: updated my self-assessment sections with references to use once drafting begins Signed-off-by: molofgarb <[email protected]> Ethan: added Overview section to self-assessment.md Signed-off-by: molofgarb <[email protected]> Ethan: began draft of Communication Channels portion of self-assessment document Signed-off-by: molofgarb <[email protected]> Ethan: finished work on Communication channels first draft Signed-off-by: molofgarb <[email protected]> Ethan: finished Development Pipeline section of Secure Development Practices Signed-off-by: molofgarb <[email protected]> Ethan: finished Ecosystem section of Secure Development Practices Signed-off-by: molofgarb <[email protected]> Skye: wrote Background, Actions, and Non-Goals sections Signed-off-by: Skye Kim <[email protected]> Ethan: completed Security issue resolution. My document is ready to merge with the main self-assessment document. Signed-off-by: molofgarb <[email protected]> Edited Background and Non-Goals sections - ready for merging Signed-off-by: Skye Kim <[email protected]> Chris Torres, Finished Section on Actors, Goal, Project Compliance Signed-off-by: ChrisTorresNYU <[email protected]> added security functions and features Signed-off-by: Vamsi Koneti <[email protected]> updated appendix Signed-off-by: Vamsi Koneti <[email protected]> Merge all contributions from all team members Signed-off-by: molofgarb <[email protected]> Ethan: updated SBOM to a local SBOM generated using FOSSA-cli and updated link in main doc Signed-off-by: molofgarb <[email protected]> Ethan: updated SBOM to use SBOM from Antrea's official FOSSA link, added section at end for action items, adjusted self-assessment use section from feedback Signed-off-by: molofgarb <[email protected]> Ethan: implemented feedback from Antrea maintainers for Secure development pipeline Signed-off-by: molofgarb <[email protected]> Made changes to Background and Non-Goals sections based on Project Maintainer feedback Signed-off-by: Skye Kim <[email protected]> Skye: made additional changes to Background. Ready for merging Signed-off-by: Skye Kim <[email protected]> Skye: added an Action Item Signed-off-by: Skye Kim <[email protected]> Ethan: fixed incident response in self-assessment.md using Antrea maintainers' feedback Signed-off-by: molofgarb <[email protected]> Updated Actors and Goal sections based on maintainers feedback Signed-off-by: ChrisTorresNYU <[email protected]> Skye: updated Background and Non Goals sections Signed-off-by: Skye Kim <[email protected]> Documented fixed changes Signed-off-by: ChrisTorresNYU <[email protected]> Ethan: added Vamsi's security functions and features threat model and merge all contributions Signed-off-by: molofgarb <[email protected]> Ethan: removed parallel work files that are no longer needed Signed-off-by: molofgarb <[email protected]>
- Loading branch information
