Skip to content

chore: Clean up SSDLC code #641

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

chore: Clean up SSDLC code #641

wants to merge 1 commit into from

Conversation

oarbusi
Copy link
Collaborator

@oarbusi oarbusi commented Aug 25, 2025

Description

This code no longer adds value and is not necessary to keep to comply with the deprecated policy. Cleaning up this reduces complexity

Link to any related issue(s):

Type of change:

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • This change requires a documentation update

Required Checklist:

  • I have signed the MongoDB CLA
  • I have added tests that prove my fix is effective or that my feature works
  • I have added any necessary documentation (if appropriate)
  • I have run make fmt and formatted my code

Further comments

@Copilot Copilot AI review requested due to automatic review settings August 25, 2025 12:47
@oarbusi oarbusi requested a review from a team as a code owner August 25, 2025 12:47
Copilot
Copilot AI reviewed Aug 25, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR removes deprecated SSDLC (Secure Software Development Lifecycle) compliance infrastructure that is no longer required. The changes clean up obsolete security compliance tooling and documentation.

  • Removes all SSDLC compliance scripts for generating SBOMs, PURLs, and security reports
  • Deletes GitHub workflow for augmented SBOM generation
  • Removes compliance-related Makefile targets and documentation sections

Reviewed Changes

Copilot reviewed 11 out of 11 changed files in this pull request and generated no comments.

Show a summary per file
File Description
templates/ssdlc-compliance.template.md Deletes compliance report template
scripts/compliance/*.sh Removes all compliance-related shell scripts
Makefile Removes SSDLC-related build targets
CONTRIBUTING.md Removes SBOM and compliance documentation sections
.github/workflows/generate-augmented-sbom.yml Deletes entire augmented SBOM workflow
.github/workflows/autorelease.yaml Removes compliance job from release workflow

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@github-actions GitHub Actions
Copy link
Contributor

This PR has gone 30 days without any activity and meets the project’s definition of "stale". This will be auto-closed if there is no new activity over the next 30 days. If the issue is still relevant and active, you can simply comment with a "bump" to keep it open, or add the label "not_stale". Thanks for keeping our repository healthy!

@github-actions github-actions bot added the stale label Sep 25, 2025
@oarbusi
Copy link
Collaborator Author

oarbusi commented Sep 26, 2025

Better to keep SSDLC code as per upstream team. Closing this

@oarbusi oarbusi closed this Sep 26, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@lantoli lantoli lantoli approved these changes

Assignees
No one assigned
Labels
stale
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@oarbusi @lantoli