When presented TAF at DIG - a question from David came up regarding the security of R packages running on the TAF server.
A solution was suggested to make sure that all codes/packages that come from GitHub repositories especially, will only run through r-universe for stable packages (https://ices-tools-prod.r-universe.dev/builds)
This will mean that the TAF team will have to add packages in the same fashion as creating repositories for groups and assessments.
This statement should be added to the TAF manifesto.
When presented TAF at DIG - a question from David came up regarding the security of R packages running on the TAF server.
A solution was suggested to make sure that all codes/packages that come from GitHub repositories especially, will only run through r-universe for stable packages (https://ices-tools-prod.r-universe.dev/builds)
This will mean that the TAF team will have to add packages in the same fashion as creating repositories for groups and assessments.
This statement should be added to the TAF manifesto.