Pushkar Joglekar

icon indicating a website link pushkarj.github.io

icon location San Francisco Bay Area icon location "Let's Make Kubernetes Secure for All"

Results 18 issues of Pushkar Joglekar

What: Allow non-collaborators to get notified about new PRs ready for review

**NOTE: We should let multiple folks review and approve this PR before merging** Fixes https://github.com/cncf/tag-security/issues/947 - Uses an existing GitHub Action from Marketplace: `necojackarc/[email protected]` to allow notifying non-collaborators / codeowners...

[Pilot] Security Self-Assessment of a sub-project of a graduated CNCF project

19 comment

Description: Revisit security assessment process to include the assessment of sub-projects of graduated projects by using [Cluster API](https://github.com/kubernetes-sigs/cluster-api/) sub-project of [Kubernetes](github.com/kubernetes/kubernetes) as a pilot Impact: This will create precedence on...

enhancement
project

Cloud Native Security Whitepaper v2

51 comment

Working draft (RFC ends April 27): https://docs.google.com/document/d/1fftLBt3XjDzyYQisEKH3TZXL1QnT_cHIbBnFtW98UOs/edit ## Description Original security whitepaper (#138) was published in Nov 2020, about 9 months ago. It is now time to update the paper...

project
Q2-2022

Retrospective of the Security Self-Assessment Subproject Pilot

2 comment

**Description**: With https://github.com/kubernetes/sig-security/issues/8 completed it is a good idea to perform a retrospective on what we learnt from the the pilot and how the lessons learnt could improve the overall...

assessment-process
suggestion
inactive

Create guidance on triaging build time dependency vulnerabilities

8 comment

Description: Vulnerability scanners detect CVEs in build time dependencies. But, Best practices to triage these vulnerabilities are unclear Impact: Adding docs based on experiences and anecdotes, that many projects can...

suggestion
inactive

Add sig-security-assessments sub-project

11 comment

Sub-project has now been identified: https://github.com/kubernetes/sig-security/pull/48

lgtm
cncf-cla: yes
size/S
sig/security

Auto-refreshing Official CVE Feed

50 comment

### Enhancement Description - One-line enhancement description (can be used as a release note): Auto-refreshing official CVE feed - Slack thread about Code Freeze discussion: https://kubernetes.slack.com/archives/C2C40FMNF/p1659035059991979 - Kubernetes Enhancement Proposal:...

sig/docs
stage/beta
tracked/out-of-tree
sig/security

Cloud Native Security Whitepaper v3

7 comment

## Description Original security whitepaper (#138) was published in Nov 2020, followed by version 2 (#747) in May 2022. Since then we have received a lot of community feedback for...

whitepaper
project

Documenting Lessons Learnt from recent CVE announcement

15 comment

- Clarified language on announcement of medium/low CVEs with public fixes - Updated the CVSS calculator from 3.1 to 3.0 - Added useful tips in comms. template for vulnerability announcement...

lgtm
needs-rebase
lifecycle/rotten
tide/merge-method-squash
size/S
cncf-cla: yes
committee/security-response

REQUEST: Migrate aquasecurity/vuln-list-k8s

1 comment

### New repo, staging repo, or migrate existing migrate existing: aquasecurity/vuln-list-k8s ### Is it a staging repo? no ### Requested name for new repository cve-feed-osv ### Which Organization should it...

area/github-repo
sig/security