etcd Project Security Self-Assessment - Security Pals

[qianxichen233]

added etcd Project Security Self-Assessment Draft

Contributors: Qianxi Chen Hari Kishan Reddy Abbasani Aryan Rai Ashish Tiwari

[netlify[bot]]

✅ Deploy Preview for tag-security ready!

Name	Link
🔨 Latest commit	80553e3eb44038eeba34dec0a3616bbc312736f8
🔍 Latest deploy log	https://app.netlify.com/sites/tag-security/deploys/65a806ad7f12580008396649
😎 Deploy Preview	https://deploy-preview-1201--tag-security.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[eddie-knight]

Hi there! I'm just getting started looking at your pull request, and I noticed the DCO check is failing.

You can look at the checks section of the PR (I believe it should always be below the last comment) and look for a red X highlighting the failed check. In this case, you can click Details for more information about how to get that check passing.

[qianxichen233]

Thanks a lot @ragashreeshekar , our team has updated our assessment

[qianxichen233]

Thanks a lot, we just fixed it

[eddie-knight]

I spoke with folks from the Kubernetes SIG Security today regarding this PR. Considering that etcd is a Kubernetes sub-project (and itself not a main CNCF project), I recommend that this be contributed to Kubernetes SIG Security instead of TAG Security.

[JustinCappos]

Waiting to merge until clarity about whether this belongs under the K8S SIG or not...

[eddie-knight]

@aladewberry has let us know that the etcd assessment tracking should be taken over by K8s SIG Security. We can close this PR in the meantime.

@qianxichen233— If you're interested in continuing your contribution, I recommend you connect with Ala to make sure this work is properly migrated to the correct repo and aligned with the SIG Security efforts

ref: https://cloud-native.slack.com/archives/CDJ7MLT8S/p1705437592831179