Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Tool for automated gerrit reviews – presented by Tony and Vijay, Focus on quality of the push, versions compatibility, copy rights notices consistency. Operational in DCAE. Trial for python and java projects.

Update on the Security Logging Fields and Global Requirement by Bob, info about languages used by ONAP projects based on SonarCloud. 

Python project volunteer needed.

Jira No
SummaryDescriptionStatusSolution

PTLs meeting – August 29th


ongoingThis could be shared at the DTF with all LFN projects. Amy will try to share information about this tool with LFN Governance Board as tool is applicable widely.ongoingBob to open a ticket to LF IT- done

5G Super Blueprint - Martial

The major goal is to build a seld contained setup that can start and test a 'reference' implementation.

View file
nameLFN DDF Porto - 5G SBP ORAN SMO Package_v5.pptx
height150

Sabres might not follow entirely 3GPP.

ongoing

TSC meeting update - September 1st

M3 and M4 moved by 1 week

New PTL for CLI and VNFSDK

TAC is looking for security expert – Amy in touch with Ranny

Project Lifecycle was approved

ongoing

Ticket created by Thomas Kulik New request from Thomas: https://jira.linuxfoundation.org/plugins/servlet/theme/portal/2/IT-24461 with Sonarcloud scaning capabilities enhancements.ODL code transition to ONAPPotentially better maintained 24491 started

Vulnerabilities managementSingle source of truth for recommended versions for ONAP components.startedUpdate expected next week.

Recommended protocols vs. deprecated/retiredList of cryptographic protocols used in ONAP.startedScans to be done as for every other To be elaborated next week. Examination activity to be considered.

Please register if plan to participate:

ONE Summit NARegistration Open – Amy and Pawel submissionaccepted!

  • Nov. 15 & 16 2022 Seattle, WA, USA, In Person
  • Pawel and Amy submitted proposal: ONAP’s Recipe for Managing CVEs and Securing Open Source Software
  • Byung will present service descriptor and potentially new ONAP security architecture with service mesh.

LFN Developer & Testing Forum NARegistration Open

  • Nov. 17 & 18 2022 Seattle, WA, USA, In Person
  • Productization of Assured Opensource Software
  • SBOM implementation and challenges in ONAP



Security cloud detailed record conceptCould be presented by Muddasar's colleague from Mitre. It is planned to be presented at the upcoming DTF.


SECCOM MEETING CALL WILL BE HELD ON 6th 13th OF September'22. 

Architecture review template to be reviewed.





Recordings: 

View file
name2022-09-06_SECCOM_week.mp4
height150

SECCOM presentation:

View file
name2022-09-06 ONAP Security Meeting - AgendaAndMinutes.pptx
height150