Please find below the Minutes of Meetings and recording for the SECCOM meeting that was held on 5th of January 2021.
Jira No | Summary | Description | Status | Solution |
---|---|---|---|---|
SECCOM elections – call for candidates! | E-mail with call for candidates was sent to SECCOM distribution list. Candidates submitted:
Elections later this week. | ongoing | E-mail to be sent to Kenny with request to initiate elections this week. | |
ONAP discussion on Global Requirements vs. Best Practices in Honolulu release | Amy's presentation provided at the last PTL's call: Proposal for global requirements for Honolulu release. Formal approval from PTLs would require process elaboration. SECCOM requirements are known by the community for a long time. Global requirement has to be fixed within particular release. As long as project does not meet the global requirment that wa snot met in the past, will not be allowed to provide a new container. Security framework is crucial for the ONAP success in operator environment. Quality of the code is also crucial. Process of code delivery requires review and change. Insufficient code coverage should not allow for +1 for a code acceptance. Maintenance project should be called end of support mode. | ongoing | ||
SCA: Whitesource vs. Nexus-IQ | The best would be to run both tools for one release to compare results. Projects fix direct dependencies. | ongoing | To gain resources, deprecated repos should be exluded. Sonarcloud capabilities to be further investigated. | |
OUR NEXT SECCOM MEETING CALL WILL BE HELD ON 5th OF JANUARY'21. |
Recording:
SECCOM presentation: