-
### Checked for duplicates
Yes - I've already checked
### Describe the needs
We have existing tickets and material related to testing. It would be great to converge these (and add missing cap…
-
As the number of available pip packages is increasing, I feel that there migh be a growing risk of name conflicts between different packages.
Would it be possible to include optional separate namespa…
-
I disagree with this quite strongly. I don't think this is a general best practice. I also think this section needs to be broken into two sections:
1. Create base layers [1](http://developerblog.redha…
-
The admin endpoint today is unsecured (no authentication or TLS), with the assumption that it is only available to localhost or accessible on a trusted network. Ideally:
* We want to be able to res…
htuch updated
3 months ago
-
I wonder what is the purpose of having two build systems (Ant and Maven) configured in the project? Maven is certainly more modern, and it offers automatic dependency management. However, the Github C…
-
Add the [OSSF Scorecard GitHub Action](https://github.com/ossf/scorecard-action) to this repo.
## Why?
Allows us to detect supply chain security for this GitHub Action.
## Actions
- setup GitHub A…
-
## Checklist
All items in the list below needs to be satisfied.
- [x] Is the Snap repository publicly accessible and linked in this ticket? https://github.com/nufi-official/nufi-snap
- [x] Is t…
-
### Summary
The [SLSA framework](https://slsa.dev/) defines a gradually increasing set of security measures designed to ensure the integrity of software artifacts throughout the supply chain. Once a…
-
Participants can define their own tasks. We broadly categorize all tasks into the following 3 types. Below are a few examples for each type as a reference. Prizes will depend on the usefulness, qualit…
-