Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Discovery on better visibility for supply chain security issues #10

Open
pshiu opened this issue Feb 21, 2023 · 2 comments
Open

Discovery on better visibility for supply chain security issues #10

pshiu opened this issue Feb 21, 2023 · 2 comments
Assignees
@gabor-boros

Comments

@pshiu
Copy link

pshiu commented Feb 21, 2023

From OEP-60: https://open-edx-proposals.readthedocs.io/en/latest/processes/oep-0060-proc-sec-group.html#focus-on-proactive-security-improvements

Example of problems: outdated or deprecated dependencies.

How can we take advantage of the alerts that GitHub provides for security prioritization?
@pshiu pshiu converted this from a draft issue Feb 21, 2023
@gabor-boros gabor-boros self-assigned this Nov 1, 2024
@gabor-boros
Copy link

@feanil Where would we have this discovery located? Confluence? GitHub?
cc: @farhaanbukhsh

@feanil
Copy link
Contributor

feanil commented Nov 13, 2024

@gabor-boros I think the discovery can be in the wiki, under the Security Working Group page: https://openedx.atlassian.net/wiki/spaces/COMM/pages/3624108053/Security+Working+Group

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gabor-boros gabor-boros

Labels
None yet
Projects
Security Working Group
Status: Todo
Milestone
No milestone
Development

No branches or pull requests
3 participants
@feanil @pshiu @gabor-boros