Skip to content

process: initial security management process #867

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

process: initial security management process #867

wants to merge 1 commit into from

Conversation

masc2023
Copy link
Contributor

@masc2023 masc2023 commented Apr 7, 2025

Resolves: #709, #696

@masc2023 masc2023 self-assigned this Apr 7, 2025
@github-actions GitHub Actions
Copy link

github-actions bot commented Apr 7, 2025
edited
Loading

License Check Results

🚀 The license check job ran with the Bazel command:

bazel run //:license-check

Status: ✅ Passed

Click to expand output 
[License Check Output]
2025/04/10 16:19:40 Downloading https://releases.bazel.build/7.4.0/release/bazel-7.4.0-linux-x86_64...
Extracting Bazel installation...
Starting local Bazel server and connecting to it...
Computing main repo mapping: 
Computing main repo mapping: 
Computing main repo mapping: 
Computing main repo mapping: 
Computing main repo mapping: 
Loading: 
Loading: 0 packages loaded
Loading: 0 packages loaded
    currently loading: 
Analyzing: target //:license-check (1 packages loaded, 0 targets configured)
Analyzing: target //:license-check (1 packages loaded, 0 targets configured)

Analyzing: target //:license-check (90 packages loaded, 10 targets configured)

Analyzing: target //:license-check (98 packages loaded, 10 targets configured)

Analyzing: target //:license-check (125 packages loaded, 782 targets configured)

Analyzing: target //:license-check (131 packages loaded, 823 targets configured)

Analyzing: target //:license-check (145 packages loaded, 2237 targets configured)

Analyzing: target //:license-check (145 packages loaded, 2465 targets configured)

Analyzing: target //:license-check (146 packages loaded, 2465 targets configured)

Analyzing: target //:license-check (149 packages loaded, 4611 targets configured)

INFO: Analyzed target //:license-check (150 packages loaded, 4737 targets configured).
[3 / 12] Creating source manifest for @@dash_license_checker~//tool/formatters:dash_format_converter [for tool]; 0s local
[9 / 13] JavaToolchainCompileClasses external/rules_java~/toolchains/platformclasspath_classes; 0s processwrapper-sandbox ... (2 actions running)
[11 / 13] JavaToolchainCompileBootClasspath external/rules_java~/toolchains/platformclasspath.jar; 0s processwrapper-sandbox
[12 / 13] Building license.check.license_check.jar (); 0s multiplex-worker
INFO: Found 1 target...
Target //:license.check.license_check up-to-date:
  bazel-bin/license.check.license_check
  bazel-bin/license.check.license_check.jar
INFO: Elapsed time: 21.835s, Critical Path: 2.74s
INFO: 13 processes: 9 internal, 3 processwrapper-sandbox, 1 worker.
INFO: Build completed successfully, 13 total actions
INFO: Running command line: bazel-bin/license.check.license_check ./formatted.txt -review -project automotive.score -repo https://github.com/eclipse-score/score -token otyhZ4eaRYK1tKLNNF-Y
[main] INFO Querying Eclipse Foundation for license data for 76 items.
[main] INFO Found 52 items.
[main] INFO Querying ClearlyDefined for license data for 24 items.
[main] INFO Found 24 items.
[main] INFO Vetted license information was found for all content. No further investigation is required.

@masc2023 masc2023 force-pushed the masc2023_add_initial_security_mgt branch 2 times, most recently from bf7017d to 585fdde Compare April 7, 2025 16:46
@github-actions GitHub Actions
Copy link

github-actions bot commented Apr 7, 2025

The created documentation from the pull request is available at: docu-html

@masc2023 masc2023 force-pushed the masc2023_add_initial_security_mgt branch 4 times, most recently from 8323531 to e274572 Compare April 9, 2025 11:35
@masc2023 masc2023 requested a review from aschemmel-tech April 9, 2025 11:43
@masc2023 masc2023 marked this pull request as ready for review April 9, 2025 11:43
@masc2023 masc2023 force-pushed the masc2023_add_initial_security_mgt branch 2 times, most recently from 1acac44 to ff2996f Compare April 10, 2025 06:36
pahmann
pahmann reviewed Apr 10, 2025
View reviewed changes
docs/process/_assets/score_process_area_overview.drawio.svg
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there any reasoning behind the re-ordering of process areas? (I am just asking, it is not a finding to change this.)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just some thinking in Project Management activities, including Safety/Security and Change Request first, then Problem and finally more Infrastructure Config, Tool, Release, but open to discuss different orders

@masc2023
process: initial security management process
12c64a4 
Changed Process Aread Overview Image
Removed Stakeholder and Risk Management Plan

Resolves: #709, #696
@masc2023 masc2023 force-pushed the masc2023_add_initial_security_mgt branch from ff2996f to 12c64a4 Compare April 10, 2025 16:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@pahmann pahmann pahmann left review comments

@aschemmel-tech aschemmel-tech Awaiting requested review from aschemmel-tech

At least 1 approving review is required to merge this pull request.

Assignees

@masc2023 masc2023

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Improvement: Document (Cyber)-Security process
2 participants
@masc2023 @pahmann