-
Notifications
You must be signed in to change notification settings - Fork 94
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security Slam 2023 Participation #296
Comments
@eddie-knight Thank you for telling us about this opportunity, I will assign this to myself |
There already is a CLOMonitor dashboard: https://clomonitor.io/projects/cncf/ocm Summary for the ocm repo: CLOMonitor reportSummaryRepository: ocm Checks passed per category
ChecksDocumentation [100%]
License [75%]
Best Practices [63%]
Security [63%]
For more information about the checks sets available and how each of the checks work, please see the CLOMonitor's documentation. I will try to bring the score to 100%, and will also update the summary in this comment if there is any progress. |
Hey @zhujian7, did you get a chance to sign up OCM to qualify for Slam prizes? Also, we added a getting started guide if you want to check to see whether that's helpful for you |
This issue is stale because it has been open for 120 days with no activity. After 14 days of inactivity, it will be closed. Remove the |
Bumps [github.com/emicklei/go-restful](https://github.com/emicklei/go-restful) from 2.9.5+incompatible to 2.16.0+incompatible. - [Release notes](https://github.com/emicklei/go-restful/releases) - [Changelog](https://github.com/emicklei/go-restful/blob/v3/CHANGES.md) - [Commits](emicklei/go-restful@v2.9.5...v2.16.0) --- updated-dependencies: - dependency-name: github.com/emicklei/go-restful dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Hello ocm community!
In case you missed it, last week was the kickoff for the month-long Cloud Native Security Slam! You can read more about the event and find the kickoff webinar recording here.
In the kickoff last week, it was announced that there are 5 event badges that projects can pursue. There will be swag prizes and a $100 gift card awarded for the first 200 badges that are competed— that's up to $500 per project!
To help with work prioritization, we completed a survey of CNCF end users across multiple industries, including Construction, Cybersecurity, Aerospace & Defense, Game Development & Consumer Services, Consulting, and Nuclear.
Through this survey, end users have identified their interest in seeing security improvements to the projects they use. We've asked them to share which Security Slam goals are most interesting to them— and we've compiled the results in a hope that this will help your prioritization during the upcoming event.
While some users have not authorized us to share their name, we've still included their responses in our calculation for you. We CAN tell you that the ocm responses included Epic Games.
After calculating the responses according to the interest-weight, we've found these to be the most interesting things that ocm end users would like to see, from the five possible Security Slam badges.
You can read more about the success metrics and find resources to help you achieve them here.
Join us in the #security-slam channel on the CNCF Slack to ask questions and get help from the community!
The text was updated successfully, but these errors were encountered: