Skip to content

Create Security Policy for the Devfiles Org #1461

Open
@thepetk

Description

@thepetk

/kind user-story
/kind epic

Which area this user story is related to?

/area api
/area library
/area registry
/area alizer
/area landing-page

User Story

As part of the CNCF Defender EPIC it is recommended to add a security-policy. As part of the security policy it is also recommended to add:

Both the threat model and the vulnerability report process can be part of a more generic Security.md file which also can define additional policies and procedures followed by the devfile org.

Acceptance Criteria

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/alizerEnhancement or issue related to the alizer repoarea/apiEnhancement or issue related to the api/devfile specificationarea/landing-pageIssues with the Landing Pagearea/libraryCommon devfile library for interacting with devfilesarea/registryDevfile registry for stacks and infrastructurekind/epicA high level requirement that can/should be split into smaller issueskind/user-storyUser story for new enhancementlifecycle/staleStale items. These items have not been updated for 90 days.

    Type

    No type

    Projects

    Status

    In Review 👀

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions