2021-06-01 Security Subcommittee Meeting Notes
- Paweł Pawlak
Please find below the Minutes of Meetings and recording for the SECCOM meeting that was held on 1st of June 2021.
Jira No | Summary | Description | Status | Solution |
|---|---|---|---|---|
| 2021 LFN Developer & Testing Forum June 2021-06-07 - 2021-06-10 | Register to LFN Developer & Testing Forum June Proposals: 2021 LFN Developer & Testing Forum June SECCOM proposal: ONAP: SECCOM activities for Istanbul release | ongoing | Please register to the event. |
| SonarCloud questions review | The permissions are given per repo unfortunately.. not across all at once She has updated Tony’s admin permissions now in policy-clamp. Last time, I believe she had given Tony’s permissions in another repo. If needed permissions for other repo/repos please Jess shall be informed via IT support GitHub IDs were provided by Pawel and Tony. GitHub IDs of all PTLs should be collected to grant them an access to SonarCloud capabilities. | ongoing | To book a slot for next PTLs meeting to ask PTLs for their GitHub IDs. |
| (IT-22048) for direct vs. indirect dependencies with container scans | Feedback from Bengt to move on with ticket at Sonatype by opening a feature request - Amy opened a feature request (IT-22175). | ongoing |
|
| Analysis of the container logging requirements against the ATT&CK container matrix | Continuation of presentation from Bob, slides 15 – 21 were covered.
 | ongoing |
|
| OUR NEXT SECCOM MEETING CALL WILL BE HELD ON 15th OF JUNE'21. | Potentially update from Fabian.
|
|
|
Recording:
SECCOM presentation:
