Linkerd Project Security Self-Assessment - Security Pals #1181
Conversation
✅ Deploy Preview for tag-security canceled.
|
|
Hi there! I'm just getting started looking at your pull request, and I noticed the DCO check is failing. You can look at the checks section of the PR (I believe it should always be below the last comment) and look for a red X highlighting the failed check. In this case, you can click |
|
I noticed that you included an SBOM along with the self assessment. There are two reasons that jump to the front of my mind for why this isn't needed... SBOMs should be associated with releases, as the bill of materials is only accurate and useful if it is created at build time and associated to a particular point in the code history. |
Shugo0016
force-pushed
the
main
branch
2 times, most recently
from
21db14c to
1bd7b7a
Compare
There was a problem hiding this comment.
Thanks for the PR @amanda-gonzalez and team, appreciate the efforts.
I have completed first pass of review and comments on sections that need your attention. Please feel free to reach out here or on slack for any questions and clarifications.
Along with addressing the comments, kindly update the PR branch with the latest content in the repo as this branch is out-of-date with the base branch.
amanda-gonzalez
changed the title
amanda-gonzalez
force-pushed
the
main
branch
3 times, most recently
from
14feb82 to
2580548
Compare
amanda-gonzalez
force-pushed
the
main
branch
from
4a19f9d to
2580548
Compare
Shugo0016
force-pushed
the
main
branch
3 times, most recently
from
be732b2 to
6394aff
Compare
There was a problem hiding this comment.
changes made after ragashreeshekar's review:
- fixed formatting
- provided relevant links
- clarified vulnerabilities section
- removed appendix
- reworked CII section
|
Thank you @eddie-knight and @ragashreeshekar. We have resolved all reviews/requests. Most recently updated are:
|
Signed-off-by: amanda <109336105+amanda-gonzalez@users.noreply.github.com> Co-Authored-By: Kaya Erol <kue202@nyu.edu> Co-Authored-By: Thaison Le <tnl2012@nyu.edu> Co-Authored-By: Dwireph Kamleshkumar Parmar <dp3757@nyu.edu> Signed-off-by: Kaya Erol <kue202@nyu.edu>
Signed-off-by: amanda <109336105+amanda-gonzalez@users.noreply.github.com> Co-Authored-By: Kaya Erol <kue202@nyu.edu> Co-Authored-By: Thaison Le <tnl2012@nyu.edu> Co-Authored-By: Dwireph Kamleshkumar Parmar <dp3757@nyu.edu> Signed-off-by: Kaya Erol <kue202@nyu.edu>
Signed-off-by: Ragashree M C <ragashreeshekar@gmail.com>
Contributors: