Discovery on better visibility for supply chain security issues

[pshiu]

From OEP-60: https://open-edx-proposals.readthedocs.io/en/latest/processes/oep-0060-proc-sec-group.html#focus-on-proactive-security-improvements

Example of problems: outdated or deprecated dependencies.

How can we take advantage of the alerts that GitHub provides for security prioritization?

[gabor-boros]

@feanil Where would we have this discovery located? Confluence? GitHub? cc: @farhaanbukhsh

[feanil]

@gabor-boros I think the discovery can be in the wiki, under the Security Working Group page: https://openedx.atlassian.net/wiki/spaces/COMM/pages/3624108053/Security+Working+Group