Closed gbinal closed 7 years ago
You can keep the checklist in just one place if you like. Having the issue in the Infrastructure repo specifically is more important for the labels and the placement in the kanban board.
Sorry for the confusion, @afeld. This is just for sharing with the site owner (who is outside of TTS and doesn't have access to the infrastructure repo).
I'll update original issue to try and be more clear.
Makes sense! I'm saying: feel free to remove the checklist in the Infrastructure repo and just use this one.
Ah. Sorry, I see what you mean.
Thank you that's kind. I'm going to keep things as is though since I'm superstitious and messing with anything at all with this ATO.
Note - this issue is for convenience of team members outside of TTS, who cannot access the infrastructure. The canonical issue for this project's ATO progress is here. This issue will be updated periodically while that one will be the most up to date.
TODOs
Phase 1: ATO Sprint prerequisites
Everything in this section needs to be completed before the project will be scheduled for an ATO Sprint.
Infrastructure Lead
Backlog
of the ATO Kanban board.ATOs
folder in Google Drive, go to18F
/OPP
/PIF
, thenWork in progress
, and create a subfolder called in the format<project> ATO - <duration> <level>
. Link to it as theATO folder
at the top of this issue.ATO Sprinting Team notes - <project>
. - linkSprint notes
at the top of this issue.Project team
Technical
ATO folder
.ATO folder
.Beta
label to the site.Documentation
...reading and writing.
.about.yml
for the main repository - linkPhase 2: Documentation review
Documentation review
column of the ATO Kanban board. - @[infrastructure lead]Phase 3: ATO Sprint
Critical
orHigh
vulnerabilities from the ESAP.Phase 4: Post-Sprint
Beta
label from the site.Moderate
vulnerabilities - due [30 days after ATO issued]Low
vulnerabilities - due [60 days after ATO issued]See the Before You Ship site for more information.
/cc @18F/ato