Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / kubernetes/committee-security-response issues and pull requests

#202 - Update SUSE Rancher contact in `distributors-announce` list

Issue - State: closed - Opened by macedogm about 1 month ago - 2 comments

#200 - Update slack onboarding/offboarding and slack vuln announcement template

Pull Request - State: open - Opened by cji 2 months ago - 1 comment
Labels: approved, size/S, cncf-cla: yes, committee/security-response

#199 - Distributors Removal for Weaveworks

Issue - State: open - Opened by micahhausler 2 months ago

#198 - Distributors Application for VMware By Broadcom

Issue - State: closed - Opened by skhushboo-vm 3 months ago - 6 comments

#197 - Add a tool to consistently format embargoed patches

Pull Request - State: closed - Opened by cji 4 months ago - 3 comments
Labels: approved, size/M, cncf-cla: yes, committee/security-response

#196 - Create spf-record-response.md

Pull Request - State: closed - Opened by tabbysable 4 months ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#195 - Create clickjacking-response.md

Pull Request - State: closed - Opened by tabbysable 4 months ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#194 - Add a canned response to clickjacking reports on kubernetes.io

Pull Request - State: closed - Opened by tabbysable 4 months ago - 1 comment
Labels: approved, size/XS, cncf-cla: yes, committee/security-response

#193 - update expected timeline for public disclosure

Pull Request - State: closed - Opened by ritazh 5 months ago - 3 comments
Labels: approved, size/XS, cncf-cla: yes, committee/security-response

#192 - update release roles links in security release process

Pull Request - State: closed - Opened by pacoxu 9 months ago - 5 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#191 - Update security-release-process.md to clarify when to close the github tracking issue.

Pull Request - State: closed - Opened by cji 10 months ago - 5 comments
Labels: lgtm, approved, size/XS, lifecycle/stale, cncf-cla: yes, committee/security-response, kind/documentation

#190 - Add steps for CVE ID and CVE details

Pull Request - State: closed - Opened by ritazh 11 months ago - 2 comments
Labels: approved, size/M, cncf-cla: yes, committee/security-response

#189 - Create a script to consistently format patch files

Issue - State: closed - Opened by cji 11 months ago - 4 comments

#188 - Update release process and announcement

Pull Request - State: closed - Opened by ritazh about 1 year ago - 2 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#187 - Add note about list moderation

Pull Request - State: closed - Opened by tabbysable about 1 year ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#186 - include patches for supported versions

Pull Request - State: closed - Opened by tabbysable about 1 year ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#185 - Make embargo policy more explicit

Pull Request - State: closed - Opened by ritazh about 1 year ago - 2 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#184 - Update CNA trained SRC members

Pull Request - State: closed - Opened by enj about 1 year ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#183 - Add Luke to Emeritus members list

Pull Request - State: closed - Opened by cji about 1 year ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#182 - Offboard @lukehinds

Issue - State: closed - Opened by cji about 1 year ago - 4 comments

#181 - Remove Luke from SRC

Pull Request - State: closed - Opened by lukehinds over 1 year ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#180 - private-distributors-list: add DaoCloud

Issue - State: open - Opened by pacoxu over 1 year ago - 11 comments

#179 - Update Luke's email address

Pull Request - State: closed - Opened by lukehinds over 1 year ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#178 - Rename oncall->on-call, add secondary on-call info

Pull Request - State: closed - Opened by joelsmith over 1 year ago - 6 comments
Labels: approved, lifecycle/rotten, size/M, cncf-cla: yes, committee/security-response, do-not-merge/hold

#177 - Onboard @cji

Issue - State: closed - Opened by joelsmith over 1 year ago - 5 comments

#176 - Onboard cji

Pull Request - State: closed - Opened by joelsmith over 1 year ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#175 - Rename security-release-process.md to security-release-process.md

Pull Request - State: closed - Opened by Xlougf over 1 year ago - 4 comments
Labels: size/XS, cncf-cla: no

#174 - Remove Tim from CNA handbook

Pull Request - State: closed - Opened by enj over 1 year ago - 5 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#173 - Onboard/offboard members & update process docs

Pull Request - State: closed - Opened by tallclair over 1 year ago - 4 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#172 - Update registry k8s.gcr.io -> registry.k8s.io

Pull Request - State: closed - Opened by ArkaSaha30 over 1 year ago - 5 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#171 - Testing - Please ignore

Pull Request - State: closed - Opened by tallclair over 1 year ago - 2 comments
Labels: needs-rebase, approved, size/L, cncf-cla: yes, committee/security-response

#170 - Offboard @sfowl

Issue - State: closed - Opened by tallclair over 1 year ago - 6 comments

#169 - Update / Create docs for onboarding fix-team members to HackerOne

Issue - State: closed - Opened by tabbysable almost 2 years ago - 5 comments
Labels: lifecycle/rotten

#168 - Documenting Lessons Learnt from recent CVE announcement

Pull Request - State: closed - Opened by PushkarJ about 2 years ago - 17 comments
Labels: lgtm, needs-rebase, lifecycle/rotten, tide/merge-method-squash, size/S, cncf-cla: yes, committee/security-response

#167 - Docs improvement: add check of CVE feed

Issue - State: closed - Opened by tabbysable about 2 years ago - 5 comments
Labels: lifecycle/rotten

#166 - Add GitHub Token leak process

Pull Request - State: closed - Opened by tabbysable about 2 years ago - 15 comments
Labels: lgtm, approved, lifecycle/rotten, tide/merge-method-squash, size/S, cncf-cla: yes, committee/security-response

#165 - Add container image vuln response template.

Pull Request - State: closed - Opened by tabbysable about 2 years ago - 2 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#164 - Remove Taahir from associates

Pull Request - State: closed - Opened by tallclair about 2 years ago - 1 comment
Labels: approved, size/XS, cncf-cla: yes, committee/security-response

#163 - Add documentation for cvelib setup and use

Pull Request - State: closed - Opened by micahhausler about 2 years ago - 2 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#162 - Add docs about use of CLI utility to request CVEs from new CVE API

Issue - State: closed - Opened by tabbysable about 2 years ago - 4 comments
Labels: lifecycle/rotten

#161 - Restore severity thresholds documentation

Pull Request - State: closed - Opened by tallclair over 2 years ago - 3 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#160 - Add a template for a canned response for non-vulnerability emails to the security@ list.

Pull Request - State: closed - Opened by cjcullen over 2 years ago - 4 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#159 - Create comms template for out-of-scope security@ email reports

Issue - State: closed - Opened by tabbysable over 2 years ago - 2 comments
Labels: lifecycle/frozen, triage/accepted

#158 - Add Rita and PJ as associate members

Pull Request - State: closed - Opened by enj over 2 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#157 - Onboard @PushkarJ as associate

Issue - State: closed - Opened by enj over 2 years ago - 4 comments
Labels: lifecycle/stale

#156 - Onboard @ritazh as associate

Issue - State: closed - Opened by enj over 2 years ago - 2 comments

#155 - Fix tables of contents using mdtoc

Pull Request - State: closed - Opened by tallclair over 2 years ago - 2 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#154 - Distributors application for Cisco

Issue - State: closed - Opened by justaugustus over 2 years ago - 2 comments

#153 - Create a self-referential SECURITY_CONTACTS file to silence the bot.

Pull Request - State: closed - Opened by tabbysable over 2 years ago - 2 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#152 - Added Balaji as associate

Pull Request - State: closed - Opened by micahhausler over 2 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#151 - Onboard @SaranBalaji90 as associate

Issue - State: closed - Opened by micahhausler over 2 years ago - 6 comments
Labels: lifecycle/rotten

#150 - Fix enj email

Pull Request - State: closed - Opened by enj over 2 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#149 - Consolidate OWNERS and SECURITY_CONTACTS

Issue - State: open - Opened by sfowl over 2 years ago - 7 comments
Labels: lifecycle/frozen

#148 - Update SRC process docs

Pull Request - State: closed - Opened by tallclair over 2 years ago - 2 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#147 - Document guide to interpreting CVSS for Kubernetes

Issue - State: open - Opened by tallclair over 2 years ago - 6 comments
Labels: lifecycle/frozen, needs-triage

#146 - Document googlegroups triage flow

Issue - State: closed - Opened by tallclair over 2 years ago

#145 - Create comms template for owner outreach within project

Issue - State: open - Opened by tabbysable over 2 years ago - 2 comments
Labels: lifecycle/frozen

#144 - Add H1Bot security key process to on/offboarding documentation

Issue - State: open - Opened by tallclair over 2 years ago - 3 comments
Labels: lifecycle/frozen

#143 - Create a SECURITY_CONTACTS file

Issue - State: closed - Opened by k8s-triage-robot over 2 years ago - 14 comments

#142 - Onboard Mo and Offboard Swamy

Issue - State: closed - Opened by tallclair over 2 years ago - 1 comment

#141 - s/Swamy/Mo/

Pull Request - State: closed - Opened by tallclair over 2 years ago - 2 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#140 - Document incident command process for non-SRC members

Issue - State: closed - Opened by tallclair over 2 years ago - 7 comments
Labels: lifecycle/rotten

#139 - Content Review

Pull Request - State: closed - Opened by tallclair over 2 years ago - 1 comment
Labels: size/XXL, cncf-cla: yes

#138 - Add OSS-Fuzz to onboarding documentation

Issue - State: open - Opened by tabbysable over 2 years ago - 3 comments
Labels: lifecycle/frozen, needs-triage

#137 - Add leads@ to onboarding documentation

Issue - State: open - Opened by tabbysable over 2 years ago - 5 comments
Labels: lifecycle/frozen, needs-triage

#136 - update for k-dev to [email protected] migration

Pull Request - State: closed - Opened by tabbysable over 2 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#135 - Create a SECURITY_CONTACTS file.

Issue - State: closed - Opened by k8s-triage-robot almost 3 years ago - 2 comments

#134 - Create a SECURITY_CONTACTS file.

Issue - State: closed - Opened by k8s-triage-robot almost 3 years ago - 6 comments

#133 - Add official-cve-feed label to new vulnerability announcement issues

Pull Request - State: closed - Opened by tabbysable almost 3 years ago - 4 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#132 - Fix triage flowchart image reference.

Pull Request - State: closed - Opened by tabbysable almost 3 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#131 - Update CNA handbook with current workflow

Pull Request - State: closed - Opened by tallclair almost 3 years ago - 2 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#130 - update place holder tag /committee product-security

Pull Request - State: closed - Opened by pacoxu about 3 years ago - 10 comments
Labels: size/XS, cncf-cla: yes, committee/security-response, do-not-merge/hold

#129 - Update to security-release-team@

Pull Request - State: closed - Opened by lukehinds about 3 years ago - 11 comments
Labels: lgtm, approved, lifecycle/rotten, size/S, cncf-cla: yes, committee/security-response, do-not-merge/invalid-commit-message

#128 - PSC rename

Pull Request - State: closed - Opened by lukehinds about 3 years ago - 2 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#127 - Kubernetes CVE database presubmit check

Issue - State: closed - Opened by tallclair over 3 years ago - 5 comments
Labels: help wanted, lifecycle/rotten

#126 - Updated comms templates

Pull Request - State: closed - Opened by micahhausler over 3 years ago - 2 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#125 - Update process docs

Pull Request - State: closed - Opened by tallclair over 3 years ago - 2 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#124 - Promote Tabitha Sable to full PSC member

Pull Request - State: closed - Opened by tallclair over 3 years ago - 9 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#123 - docs: update distributors-announce file

Pull Request - State: closed - Opened by spiffxp over 3 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#122 - Update onboarding guide with slack, calendar and docs

Pull Request - State: closed - Opened by tallclair over 3 years ago - 1 comment
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#121 - Offboard Craig from PSC

Pull Request - State: closed - Opened by tallclair over 3 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#120 - dependabot alerts: 🤔

Issue - State: closed - Opened by BenTheElder almost 4 years ago - 8 comments
Labels: lifecycle/rotten

#119 - Add instructions for posting to #announcements

Pull Request - State: closed - Opened by cji almost 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#118 - private-distributors-list: add Giant Swarm

Issue - State: closed - Opened by stone-z almost 4 years ago - 1 comment

#117 - Response policy for critical vulnerabilities subject to the Kubernetes deprecation policy?

Issue - State: closed - Opened by justaugustus almost 4 years ago - 6 comments
Labels: lifecycle/rotten

#116 - Add distributors to general announcement email

Pull Request - State: closed - Opened by tallclair almost 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#114 - Add Taahir Ahmed as an associate member

Pull Request - State: closed - Opened by cjcullen almost 4 years ago - 7 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#113 - Define user interaction

Pull Request - State: closed - Opened by destijl almost 4 years ago - 5 comments
Labels: lifecycle/rotten, size/S, cncf-cla: yes, committee/security-response

#112 - Define embargo criteria

Issue - State: closed - Opened by lukehinds almost 4 years ago - 4 comments
Labels: lifecycle/rotten

#110 - Change Tim's email to apple.com :'(

Pull Request - State: closed - Opened by cjcullen about 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#105 - Ensure all Kubernetes repos include a SECURITY.md

Issue - State: closed - Opened by tallclair about 4 years ago - 8 comments
Labels: lifecycle/rotten

#100 - Onboarding: clarify that role on k-announce is manager, not owner

Pull Request - State: closed - Opened by joelsmith about 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#99 - kubernetes-security fork CI

Issue - State: open - Opened by cblecker almost 5 years ago - 16 comments
Labels: lifecycle/frozen, sig/security

#98 - Onboard Swamy to PSC

Pull Request - State: closed - Opened by tallclair about 4 years ago - 5 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#97 - Establish audit process for information access

Issue - State: closed - Opened by tallclair about 4 years ago - 4 comments
Labels: lifecycle/rotten

#96 - Add an email template for distributors-announce notifications

Pull Request - State: closed - Opened by tallclair about 4 years ago - 2 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#95 - s/temlpates/templates/

Pull Request - State: closed - Opened by tallclair about 4 years ago - 1 comment
Labels: size/XS, cncf-cla: yes, committee/security-response

#94 - PSC membership updates

Pull Request - State: closed - Opened by joelsmith over 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#93 - Update contacts for Jordan's offboarding

Pull Request - State: closed - Opened by cji over 4 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response