-
Notifications
You must be signed in to change notification settings - Fork 27
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TUF analysis: IA table changes #274
Comments
@chalin Noted. I'll wait for @lukpueh views on the structure before I create a PR. |
I think it's fine. IMO the canonical location for project-wide security policy (to report security issues) is: https://github.com/theupdateframework/community/security/policy What if we set up a policy there, and point to it from theupdateframework.io/security? |
I'd do it the other way around. If there's any content in https://github.com/theupdateframework/community/security/policy, it should point back to the website (and have no other content). That is, make the website security section/pages the canonical reference. WDYT? |
Work for me. |
Hi @chalin . So this is how I understood the IA for this section:
|
Further proposed changes to the table under https://github.com/cncf/techdocs/blob/main/analyses/0012-TUF/implementation.md#provide-project-meeting-links-and-calendar:
I think that we might need a top-level entry (that shows up in the top-nav too), named Security. What do you think @lukpueh.
In terms of IA:
WDYT @lukpueh?
The text was updated successfully, but these errors were encountered: