Closed afeld closed 3 years ago
its-a-lisa-at-work
commented
3 years ago What needs to be added: Only listed in the scope table and needs to be added to above section:
Should be listed outside of usa.gov and not within:
Not listed in the scope table:
Systems that are live and should be considered to be added:
its-a-lisa-at-work
commented
3 years ago @afeld so, is this overcome by recent events now?
afeld
commented
3 years ago Maybe. The larger goal is to reduce costs of the FCSF. If adding more sites wouldn't increase the cost (not sure how we decided on the cost split), then this could continue. Agree that's a more important thing to figure out first.
its-a-lisa-at-work
commented
3 years ago roger; I think we need to figure out the cost first and then revisit this; going to move to Blocked/Watching and create a new issue to tackle the budget
its-a-lisa-at-work
commented
3 years ago Added a section in the Bug Bounty Options to include the Federalist sites into the program
its-a-lisa-at-work
commented
3 years ago Posted a message in the Bug Bounty channel to get clarity on this
its-a-lisa-at-work
commented
3 years ago Modifying the scope to this to add the Federalist sites; those are only sites/repos that we have that aren't in the Bug Bounty scope. There are a few systems 'under development' so those will get added down the line; the main outlier is the USWDS but that will get discussed in https://github.com/18F/tts-tech-portfolio/issues/1085
got the 👍🏼 from Federalist to smartly add in the sites; so working with H1 on the language now
afeld
commented
3 years ago Focusing on https://github.com/18F/tts-tech-portfolio/issues/1224 instead.
Background Information
We should audit our list of systems against what's included in the Bug Bounty scope and see what should be added, as we made it an ATO requirement.
Implementation Steps
Acceptance Criteria