Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Epic - Build Trust In Impact Framework #629

Closed
44 of 49 tasks
jmcook1186 opened this issue Apr 10, 2024 · 3 comments
Closed
44 of 49 tasks

Epic - Build Trust In Impact Framework #629

jmcook1186 opened this issue Apr 10, 2024 · 3 comments
Assignees
Labels
EPIC Used to denote an issue that represents a whole epic. Core team only

Comments

@jmcook1186
Copy link
Contributor

jmcook1186 commented Apr 10, 2024

Overview

Although we've been using the QA name as shorthand for this epic, it's really about "Building trust in the IF". This is a much broader scope than QA alone, although QA is an important part of it.

We want to put processes and tools in place so that people feel confident using IF and participating in the IF community as builders, contributors, users, advocates, evangelists or honest critics!

To achieve this we will focus on seven main themes:

  • Communication
  • Tooling
  • Github processes
  • QA/Testing
  • Errors and logs
  • Bug handling
  • Tracking our own performance

By completing specific tasks that contribute to one or more of these topics we can achieve the following:

  • it is easier to identify and report bugs and vulnerabilities
  • the core team can respond to issues more efficiently
  • we set clear expectations for the IF community
  • the product becomes more stable and reliable
  • we build trust and reputation
  • the IF ecosystem is easier to maintain

These outcomes lead to a safer product and more vibrant community, and that will translate into adoption. We want this to stimulate a flywheel effect where more high integrity interactions leads to more adoption, which leads to more high integrity interactions, with trust being a positive externality.

Epic goals

The high levels goals we want to achieve are:

  • Improve our communication with the community
  • Add tooling to empower contributors to get the msot out of IF
  • Refine our Github processes to give a consistent experience for core developers and contributors across IF repositories
  • Add QA/testing processes to ensure the integrity of our repositories and packages
  • Track and report our own performance with a monthly cadence

User stories

As a core developer I want a clear process for SDLC so that I we don’t block each other, do throw away work and maintain developer velocity.

As a QA engineer I want a clear test process so we can ensure the quality of our product doesn’t dip below what the community will accept.

As a core developer I want to encourage community contribution so that we grow and nurture the community and ecosystem for IF.

As a developer I want better tooling so that I can run, test and report issues with manifest files and plugins

As a plugin developer I want clarity regarding the IF interface so that I can take advantage of IF features and help manifest developers diagnose issues faster.

As a core developer I want to cleanup and consolidate our collection of plugins so we can reduce the resources required to QA/maintain plugins

As a user of IF I want security so that I can trust that using it won’t create security holes

Success metrics

Timeline

Ticket refinement and work will begin on Monday 15th April 2024

@zanete
Copy link

zanete commented Jun 5, 2024

@jmcook1186 I was trying to reconcile this original epic with all the tasks against the structured by feature approach we have going in the #693 , and have a few of questions:

  • "Create a ci/cd pipeline that runs if-verify on a folder of manifests" - I feel this is covered by a set of issues, correct?
  • "Explore running plugin code in a sandbox environment" - same comment here, but I already asked it on Epic - Security #658
  • what is to be done with the KPI related ones, If i remember correctly you said that there are KPIs somewhere defined already, can you share more detail on that?
  • is there anything on here that I we've missed and I just can't see?
    🙏

@jmcook1186
Copy link
Contributor Author

jmcook1186 commented Jun 5, 2024

@zanete

  • "Create a ci/cd pipeline that runs if-verify on a folder of manifests" : if-verify is now called if-check. These tickets cover this task:

#638
#621

  • explore running in sandbox: personally think this should get backlogged, but wait for Asim to respond on Epic - Security #658
  • KPI related ones can be closed out - Asim wanted to handle this separately. We do have some OKRs for N plugins (>50) and N contributors (>20) by the end of the year.

I think we can pretty much call this epic done when we have if-check operating over positive and negative test manifests as part of our CI/CD.

@zanete
Copy link

zanete commented Jun 5, 2024

@jmcook1186 awesome, I did a quick review on what's remaining and you can see all the tasks here: https://github.com/orgs/Green-Software-Foundation/projects/26/views/13

@zanete zanete closed this as completed Jul 10, 2024
@github-project-automation github-project-automation bot moved this from In Progress to Done in IF Jul 10, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
EPIC Used to denote an issue that represents a whole epic. Core team only
Projects
Status: Done
Development

No branches or pull requests

3 participants