2025-04-02 Policy Weekly Meeting
- Ramesh Murugan Iyer
| Agenda Item | Requested by | Notes / Links | |
|---|---|---|---|
Meeting Chair: Ramesh Murugan Iyer | |||
| Review of minutes from last meeting and matters arising | |||
| Policy update, Status for Paris | #tsc TSC Weekly Meeting PTL Weekly Meeting #ptl | ||
| ONAP Semi Standalone approach | Ramesh Murugan Iyer | ||
| Github actions for S3p tests | GHA fails due to resource limitation. Waiting on the review from Matt for increasing the resources. Waiting on Github billing to be available. Expected to be in March. Wayne Dunican - To check the deployment if the components can be minimized. | ||
| ONAP DTF | Ramesh Murugan Iyer | murali parthasarathy k will be leading the presentation for opa-pdp. | |
| Security updates | Ramesh Murugan Iyer | Projects were asked to check vulnerabilities periodically and fix critical CVEs within a month by the TSC. Nexus Iq access requested for Wayne. - Pending approval. – still pending | |
| Policy Interim release | Release completed for other components. opa-pdp is released. | ||
| OPA PDP updates | Deena Mukundan | https://gerrit.onap.org/r/admin/repos/policy/opa-pdp,general opa-pdp wiki : OPA PDP Kevin has raised a request for sonatype scanning support for golang project. Request for adding Sonarqube scanner for Golang for project opa-pdp(IT-27801) – Sonar cloud config for Git hub action didn't work. Further reviews to be pushed. – Latest update from kevin added in the ticket. – Completed. SECCOM's decision is to try to fix all the reported vulnerabilities for opa-pdp as the sonatype doesn't support differentiating direct and transitive dependencies at the moment. – Need to check if all the dependencies can be updated from Nexus Iq. - All the versions are already latest. --No actions needed if the versions are already latest Start looking in to Gold badging criteria for opa-pdp. - coverage is being worked on. NexusIq still not showing direct and transitive dependencies for golang. – Ticket is still open with Kevin. | |
| PAP kafka listener issue on kafka topics | In progress. Reproduced the issue. But its not impacting the workflow/cause any failures. opa-pdp has implemented a retry mechanism to retry registration if pap doesn't respond. Adam to retry the testing with manual deploy/undeploy after the error occurs. – issue occurs if pdp is restarted. Restart pdp Check for no listener error Trigger the workflow. | ||
| PAP removing PDP instances after missed heartbeats and not added back. | Adheli Tavares | PAP removing registered pdps after a certain period – Adheli is investigating the issue. Tested with apex, xacml and opa pdps in docker and helm. PDP was removed after missed heartbeats. But added back in PAP after the next heartbeat, workflow is fine later on. – Not seeing the same issue. Needs further investigation. – Require logs from opa-pdp deployment. | |
| AOB | |||
Actions
https://jenkins.onap.org/job/policy-apex-pdp-maven-clm-master - Adheli Tavares to check
Notes
Attendees
Recording
Policy Framework Status Check
failing jobs
------------
https://jenkins.onap.org/job/policy-apex-pdp-maven-clm-master
warning jobs
------------
Bugs
POLICY-5274 - Getting issue details... STATUS
POLICY-5233 - Getting issue details... STATUS