tarilabs
commented
1 year ago Work on https://github.com/opendatahub-io/model-registry/issues/50 is likely also a good prereq to be wired-up with Snyk
Closed rareddy closed 8 months ago
tarilabs
commented
1 year ago Work on https://github.com/opendatahub-io/model-registry/issues/50 is likely also a good prereq to be wired-up with Snyk
tarilabs
commented
1 year ago Seems to me we need first the "forks" in the https://github.com/red-hat-data-services of the upstream ODH repos as prerequisite.
Therefore, seems to me another prerequisite is: Productization is happening (for model-registry, and related repos if any).
rareddy
commented
8 months ago not un upstream issue (see RHOAIENG-1824)
https://app.snyk.io/
We need to Synk scan on the repository set up to discover any vulnerabilities we may pull in. Check other projects in ODH space how they were able to configure this. Also do for the Operator repository
@vaibhavjainwiz can help with the setup