Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Mapping our TIs to the Landscape view #271

Open
SecurityCRob opened this issue Feb 23, 2024 · 7 comments · Fixed by ossf/security-baseline#17
Open

Mapping our TIs to the Landscape view #271

SecurityCRob opened this issue Feb 23, 2024 · 7 comments · Fixed by ossf/security-baseline#17
Assignees
Labels
administration documentation Improvements or additions to documentation help wanted Extra attention is needed

Comments

@SecurityCRob
Copy link
Contributor

SecurityCRob commented Feb 23, 2024

There has been a request to map all OSSF TI's (WGs, Projects, SIGs, etc.) using the LF's landscape tool. Examples today include:

  1. The OSSF Membership list - https://openssf.org/about/members/
  2. CNCF Landscape - https://landscape.cncf.io/

Some existing work was created within the Diagrammers Society (https://github.com/ossf/Diagrammers-Society/tree/main/drawings).

Are there community members that are interested in collaborating on this task? This topic was discussed in the 20feb2024 TAC call.

@SecurityCRob SecurityCRob added documentation Improvements or additions to documentation help wanted Extra attention is needed administration labels Feb 23, 2024
@marcelamelara
Copy link
Contributor

Is this a duplicate of #84? If so, we can probably close that issue due to inactivity.

@SecurityCRob
Copy link
Contributor Author

Is this a duplicate of #84? If so, we can probably close that issue due to inactivity.

Oh wow.... 84. That's a blast from the past. Yes, I think these are essentially the same. the phrasing above is how staff has recently asked about.

@mlieberman85
Copy link
Contributor

https://github.com/cncf/landscape2 -- This is the link to the actual too the CNCF has built to generate the landscape. I haven't tested it out yet, but CNCF TAG Security is looking to do a cloud native security tool landscape. I plan to play around with this for an hour when I get some time and see if it's generic enough to use for other landscapes.

@lehors
Copy link
Contributor

lehors commented Mar 7, 2024

We do have https://landscape.openssf.org/ running already. But it currently only has info on members and sigstore. It would be nice to add the TIs to it for sure.

@Danajoyluck
Copy link
Contributor

Will the architecture PR in security-baseline in some ways help with this issue? Plan to have another document on vulnerability management and incident response. had discussion with @sevansdell about the document location and review process #361

@SecurityCRob SecurityCRob self-assigned this Sep 27, 2024
@sevansdell
Copy link
Contributor

@SecurityCRob, should we still handle this through an open TAC issue, or will you be working it through your new role as Chief Architect and this issue can be closed pending future documents from you?

@sevansdell
Copy link
Contributor

@SecurityCRob status update? I haven't seen any community members comment on this task, but perhaps a call for community help should be made again?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
administration documentation Improvements or additions to documentation help wanted Extra attention is needed
Projects
None yet
Development

Successfully merging a pull request may close this issue.

6 participants