Moshe Zioni issues

Results 12 issues of


                                            Moshe Zioni

Add Bad Design as a supply chain scenario

Perhaps we should consider extending the SLSA flowchart to the left towards the step of design and decisions on this steps that leads to insecure situations (regardless of implementation in...

clarification

blocked

Hermetic requirement break-down to lower-levels

Further breakdown of Hermetic category into different categories and risk levels so it can better fit lower-than-L4 requirements as well.

spec-change

Extending ch.14.1 towards Ephemerality requirement (ASVS5)

Current Chapter 14 tackles Build and Deploy systems, specifically describing in 14.1.1: > Verify that the application build and deployment processes are performed in a secure and repeatable way, such...

help wanted

5.0

Needs wider input

Moshe Zioni

Add Bad Design as a supply chain scenario

Hermetic requirement break-down to lower-levels

Extending ch.14.1 towards Ephemerality requirement (ASVS5)

Create bhasia22.svg

Add repo scanning for python repositories

Introduce a keyword list to mark internal only package scheme

add --silent option to cli

Add a native JFrog Artifactory source connector

Add JSON for output options

GitHub Packages connector - fix behavior to align with modular design