Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

TUF analysis: IA table changes #274

Open
chalin opened this issue Aug 11, 2024 · 6 comments
Open

TUF analysis: IA table changes #274

chalin opened this issue Aug 11, 2024 · 6 comments
Assignees
@Dindihub

Comments

@chalin
Copy link
Collaborator

chalin commented Aug 11, 2024
edited
Loading

Further proposed changes to the table under https://github.com/cncf/techdocs/blob/main/analyses/0012-TUF/implementation.md#provide-project-meeting-links-and-calendar:

  • Put Adoptions back under Community

I think that we might need a top-level entry (that shows up in the top-nav too), named Security. What do you think @lukpueh.

In terms of IA:

  • Security, with the following page content (they don't need to be subpages, though they can be):
    • Audits
    • Reporting issues

WDYT @lukpueh?
@Dindihub
Copy link
Collaborator

Further proposed changes to the table under https://github.com/cncf/techdocs/blob/main/analyses/0012-TUF/implementation.md#provide-project-meeting-links-and-calendar:

  • Put Adoptions back under Community

I think that we might need a top-level entry (that shows up in the top-nav too), named Security. What do you think @lukpueh. In terms of IA:

  • Security, with the following page content (they don't need to be subpages, though they can be):

    • Audits
    • Reporting issues

WDYT @lukpueh?

@chalin Noted. I'll wait for @lukpueh views on the structure before I create a PR.

@lukpueh
Copy link

lukpueh commented Aug 21, 2024

I think it's fine. IMO the canonical location for project-wide security policy (to report security issues) is: https://github.com/theupdateframework/community/security/policy

What if we set up a policy there, and point to it from theupdateframework.io/security?

@chalin
Copy link
Collaborator Author

chalin commented Aug 22, 2024

I'd do it the other way around. If there's any content in https://github.com/theupdateframework/community/security/policy, it should point back to the website (and have no other content). That is, make the website security section/pages the canonical reference. WDYT?

@lukpueh
Copy link

lukpueh commented Aug 23, 2024

I'd do it the other way around. If there's any content in https://github.com/theupdateframework/community/security/policy, it should point back to the website (and have no other content). That is, make the website security section/pages the canonical reference. WDYT?

Work for me.

@chalin
Copy link
Collaborator Author

chalin commented Aug 23, 2024

@chalin Noted. I'll wait for @lukpueh views on the structure before I create a PR.

Any further doubts before you proceed @Dindihub?

@Dindihub
Copy link
Collaborator

@chalin Noted. I'll wait for @lukpueh views on the structure before I create a PR.

Any further doubts before you proceed @Dindihub?

Hi @chalin . So this is how I understood the IA for this section:
Security :

  • Audit
  • Reporting issues (To have the same content as on the current website. Add a reporting issues link on the community/policy section on GitHub pointing to the website)

This was referenced Aug 24, 2024
Closed
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Dindihub Dindihub

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@lukpueh @chalin @Dindihub