Skip to content

Security Self-Assessment: [STRIDE-TAMPER-1] Produce a SBoM #6153

New issue
New issue
Open
Open
Security Self-Assessment: [STRIDE-TAMPER-1] Produce a SBoM#6153
Assignees
jayesh-srivastava
Labels
area/securityIssues or PRs related to securityhelp wantedDenotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.kind/featureCategorizes issue or PR as related to a new feature.priority/backlogHigher priority than priority/awaiting-more-evidence.sig/securityCategorizes an issue or PR as relevant to SIG Security.triage/acceptedIndicates an issue or PR is ready to be actively worked on.
@randomvariable

Description

@randomvariable
randomvariable
opened on Feb 16, 2022

User Story

As a cluster operator, i want to know the list of dependencies Cluster API brings for assurance within our organisation's software supply chain.

Detailed Description

  • Create SBoM of all the Cluster API components and verify checksum as a post build action

cc @PushkarJ for adding more details.

/kind feature
/area security

Metadata

Metadata

Assignees

Labels

area/securityIssues or PRs related to securityhelp wantedDenotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.kind/featureCategorizes issue or PR as related to a new feature.priority/backlogHigher priority than priority/awaiting-more-evidence.sig/securityCategorizes an issue or PR as relevant to SIG Security.triage/acceptedIndicates an issue or PR is ready to be actively worked on.

Type

No type

Projects

CAPI v1.8 release improvement tasks

  • Status

    No status
CAPI v1.9 release improvement tasks

  • Status

    No status

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions