kubernetes/committee-security-response

Issues

• private-distributors-list: add DaoCloud

  #180 opened 2 years ago by pacoxu
  11

• Update SUSE Rancher contact in `distributors-announce` list

  #202 opened 4 months ago by macedogm
  2

• Distributors Application for VMware By Broadcom

  #198 opened 4 months ago by skhushboo-vm
  6

• Document a policy for virus scanner false positive results on Kubernetes release artifacts

  #201 opened 5 months ago by tabbysable
  0

• Distributors Removal for Weaveworks

  #199 opened 6 months ago by micahhausler
  0

• Create a script to consistently format patch files

  #189 opened 6 months ago by cji
  4

• Add leads@ to onboarding documentation

  #137 opened 3 years ago by tabbysable
  5

• Document guide to interpreting CVSS for Kubernetes

  #147 opened 3 years ago by tallclair
  6

• Offboard @sfowl

  #170 opened a year ago by tallclair
  6

• Offboard @lukehinds

  #182 opened a year ago by cji
  4

• Onboard @cji

  #177 opened a year ago by joelsmith
  5

• Add OSS-Fuzz to onboarding documentation

  #138 opened 3 years ago by tabbysable
  3

• Update / Create docs for onboarding fix-team members to HackerOne

  #169 opened 2 years ago by tabbysable
  5

• Docs improvement: add check of CVE feed

  #167 opened 2 years ago by tabbysable
  5

• Onboard @SaranBalaji90 as associate

  #151 opened 2 years ago by micahhausler
  6

• Add docs about use of CLI utility to request CVEs from new CVE API

  #162 opened 2 years ago by tabbysable
  4

• Consolidate OWNERS and SECURITY_CONTACTS

  #149 opened 3 years ago by sfowl
  7

• Onboard @PushkarJ as associate

  #157 opened 2 years ago by enj
  4

• Onboard @ritazh as associate

  #156 opened 2 years ago by enj
  2

• Document incident command process for non-SRC members

  #140 opened 2 years ago by tallclair
  7

• Create comms template for out-of-scope security@ email reports

  #159 opened 3 years ago by tabbysable
  2

• Add H1Bot security key process to on/offboarding documentation

  #144 opened 3 years ago by tallclair
  3

• Create comms template for owner outreach within project

  #145 opened 3 years ago by tabbysable
  2

• Distributors application for Cisco

  #154 opened 3 years ago by justaugustus
  2

• Document googlegroups triage flow

  #146 opened 3 years ago by tallclair
  0

• Create a SECURITY_CONTACTS file

  #143 opened 3 years ago by k8s-triage-robot
  14

• SECURITY_CONTACTS contact information

  #56 opened 5 years ago by tallclair
  18

• Onboard Mo and Offboard Swamy

  #142 opened 3 years ago by tallclair
  1

• Create a SECURITY_CONTACTS file.

  #134 opened 3 years ago by k8s-triage-robot
  6

• Kubernetes vulnerability dashboard

  #57 opened 3 years ago by tallclair
  21

• Create a SECURITY_CONTACTS file.

  #135 opened 3 years ago by k8s-triage-robot
  2

• Update `security-release-process.md` with ref to security-release-team@ email

  #63 opened 5 years ago by lukehinds
  16

• Kubernetes CVE database presubmit check

  #127 opened 3 years ago by tallclair
  5

• dependabot alerts: 🤔

  #120 opened 3 years ago by BenTheElder
  8

• Response policy for critical vulnerabilities subject to the Kubernetes deprecation policy?

  #117 opened 3 years ago by justaugustus
  6

• Ensure all Kubernetes repos include a SECURITY.md

  #105 opened 4 years ago by tallclair
  8

• private-distributors-list: add Giant Swarm

  #118 opened 4 years ago by stone-z
  1

• Define embargo criteria

  #112 opened 4 years ago by lukehinds
  4

• Develop security requirements for Kubernetes subprojects to graduate to GA

  #58 opened 4 years ago by tallclair
  13

• Establish audit process for information access

  #97 opened 4 years ago by tallclair
  4

• Master Issue: Repo SECURITY_CONTACTS should list repo-specific contact people, not PSC members.

  #92 opened 4 years ago by joelsmith
  5

• Improve Process Documentation for Embargoed Releases

  #54 opened 4 years ago by tallclair
  10

• [idea] evaluate vulnerabilities against multiple security models

  #81 opened 4 years ago by tallclair
  4

• Distributors Application for Tanzu Kubernetes Grid (TKG)

  #101 opened 4 years ago by justaugustus
  2

• private-distributors-list: add Kinvolk

  #82 opened 4 years ago by vbatts
  4

• More consistent security-announcements

  #53 opened 4 years ago by tallclair
  5

• Improve process & documentation for non-k/k projects

  #55 opened 5 years ago by tallclair
  6

• Autorespond security@kubernetes.io -> hackerone?

  #80 opened 5 years ago by lukehinds
  0

• private-distributors-list: add DigitalOcean

  #77 opened 5 years ago by MorrisLaw
  2

• Offboard Jonathan Pulsifer

  #75 opened 5 years ago by jonpulsifer
  1