Discovery on adding security suites to GitHub CI - Githubissues

openedx / wg-security

A repo to keep public issues related to Security Working Group Work

1 stars 0 forks source link

Discovery on adding security suites to GitHub CI #9

Open pshiu opened 1 year ago

pshiu commented 1 year ago

From OEP-60: https://open-edx-proposals.readthedocs.io/en/latest/processes/oep-0060-proc-sec-group.html#focus-on-proactive-security-improvements

pshiu commented 1 year ago

Ideas:

pshiu commented 7 months ago

@magajh, added https://socket.dev/ recommendation by @jmbowman from this Slack thread to comment above.

magajh commented 3 months ago

Discovery document: https://openedx.atlassian.net/wiki/spaces/COMM/pages/3963420755/Discovery+Document+Integrating+Security+Suites+into+GitHub+CI+for+Open+edX

In alignment with the Next steps outlined in the document, I'm linking the issues that address each one of the points: https://github.com/openedx/wg-security/issues/41 (new) https://github.com/openedx/wg-security/issues/25 https://github.com/openedx/wg-security/issues/40 (new)