Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Creating the /resources landing page. #1433

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Creating the /resources landing page. #1433

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
fdcc438
Creating the /resources landing page.
pedroignacio13 Dec 18, 2024
3364bab
Correcting the spelling and linting
pedroignacio13 Dec 18, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
38 changes: 38 additions & 0 deletions community/resources/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,38 @@
# TAG Security resources

Here you will find some assets used by the members of the TAG Security in their activities.
This page contains the following resources:

## Design

All the graphical resources used in the documents created by the TAG can be found in this section of the website.
You will find the TAG's logos in different formats and colors and will also find information about the color palette used by the TAG.

## Landscape

At the landscape section you will be able to find information related to the CNCF Landscape evaluation performed by the TAG Security. There's information about the process used to review it as well as some of the definitions created by the working group.

## Project Resources

Part of the TAG's work is to assess Open Source projects on journey through the CNCF promotion process.
In this section you will find the templates used by the projects to start their security evaluation.

## Provenance Implementation

Here you will find the TAG's recommendation for the projects documentation of the Supply Chain Security decision aiming user engagement. There's also an example of how Argo CD organizes their documents.

## Security Fuzzing Handbook

Another security resource used by the open source projects is the Fuzzing tool, which enables the finding of security and reliability issues in software. This tools helps finding vulnerabilities in software, which might be exploited by attackers as the solution goes through.

## Security Lexicon

To help the understanding of security-related subjects the Cloud Native Security Lexicon is a creation of the TAG Security to standardize the terminologies commonly used in projects.

## Security Whitepaper

The Cloud Native Security Whitepaper is a document created by the TAG Security which provides information about the creation of secure cloud native capabilities.

## Use Case Personas

This section provides a definition of common personas involved in Cloud Native projects. This will help the creation and definition of architectures and documents that aim a specific public.
Loading