[Openstack-security] OSSN repository is live!

Abu Shohel Ahmed ahmed.shohel at ericsson.com
Mon Mar 31 08:00:44 UTC 2014 

Hi Nathan,

Great news!

By the way, we are also planning to use GIT/GERRIT work flow for Threat modelling work. This will provide us clear process and 
visibility of the work chain. Could you please share, what is the process to achieve this. I mean, i can see a bug report related to this:

https://bugs.launchpad.net/openstack-ci/+bug/1279074 

Thanks,
Shohel



On 30 Mar 2014, at 13:00, Clark, Robert Graham <robert.clark at hp.com> wrote:

> +1
>  
> Lots of work has gone into this, thank you Nathan this is a big step forward for OSSNs
>  
> From: Bryan D. Payne [mailto:bdpayne at acm.org] 
> Sent: 29 March 2014 02:34
> To: Nathan Kinder
> Cc: openstack-security at lists.openstack.org
> Subject: Re: [Openstack-security] OSSN repository is live!
>  
> Great news, thanks for setting this up!
> -bryan
>  
> 
> On Fri, Mar 28, 2014 at 5:01 PM, Nathan Kinder <nkinder at redhat.com> wrote:
> Hi,
> 
> I'm happy to announce that our new OSSN git repository is live!  I have
> pre-populated it with all of the previously published Security Notes as
> well as templates to aid in the creation of new Security Notes.  The
> repository is located here:
> 
>     http://git.openstack.org/cgit/openstack/openstack-security-notes/
> 
> Now that we have this repository, we will use the normal Gerrit workflow
> [1] for reviewing OSSNs.  Bryan Payne, Rob Clark, and myself have +2
> review permission to start with.  We can certainly discuss making
> changes to this, but it should be fine for now.  It might be a good item
> for us to discuss in Atlanta at the Summit.
> 
> Publishing of OSSNs is still a manual process.  I would like to add
> automatic publishing jobs, which is something that I will be looking
> into.  We can also potentially add check and gate jobs for things such
> as formatting if desired.
> 
> I have updated the OSSN process wiki page [2] with details of the new
> review procedures.
> 
> Thanks,
> -NGK
> 
> [1] https://wiki.openstack.org/wiki/Gerrit_Workflow
> [2] https://wiki.openstack.org/wiki/Security/Security_Note_Process
> 
> _______________________________________________
> Openstack-security mailing list
> Openstack-security at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-security
>  
> _______________________________________________
> Openstack-security mailing list
> Openstack-security at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-security

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-security/attachments/20140331/31a2df45/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4163 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack-security/attachments/20140331/31a2df45/attachment.bin>

More information about the Openstack-security mailing list